Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,085 vulnerabilities with CWE-284

CVE-2026-0748 MEDIUM

Access bypass in Drupal 7 i18n_node translation UI

CVE-2026-33622 HIGH

A PinchTab Security Policy Bypass in /wait Allows Arbitrary JavaScript Execution

CVE-2026-4875 MEDIUM

itsourcecode Free Hotel Reservation System index.php unrestricted upload

CVE-2026-4830 MEDIUM

kalcaddle kodbox Public Share userShare.class.php add privilege escalation

CVE-2026-4823 LOW

Enter Software Iperius Backup NTLM2 information disclosure

CVE-2026-28895 MEDIUM

iOS and iPadOS < 26.4 - Unauthenticated Access to Biometrics-Gated Protected Apps

CVE-2026-28880 MEDIUM

iOS and iPadOS < 18.7.7 - Unauthenticated App Enumeration via Permissions Issue

CVE-2026-28876 HIGH

iOS and iPadOS < 18.7.7 - Unprotected User Data Exposure via Path Handling Issue

CVE-2026-28863 MEDIUM

iOS and iPadOS < 26.4 - Unauthorized User Fingerprinting via Permissions Issue

CVE-2026-28862 MEDIUM

macOS < 14.8.5, < 15.7.5, < 26.4 - Unprotected User Data Exposure via Log Entry Redaction

CVE-2026-28856 MEDIUM

iOS and iPadOS < 26.4 - Unauthenticated Sensitive User Information Exposure via Locked Device

CVE-2026-28855 HIGH

iOS and iPadOS < 26.3 - Unprotected User Data Exposure via Permissions Issue

CVE-2026-28838 MEDIUM

macOS <14.8.5 - Privilege Escalation

CVE-2026-28837 HIGH

macOS < 26.4 - Unprotected User Data Exposure via Logic Issue

CVE-2026-28833 MEDIUM

iOS and iPadOS < 26.4 - Unauthenticated App Enumeration via Permissions Issue

CVE-2026-28828 MEDIUM

macOS < 14.8.5, < 15.7.5, < 26.4 - Unprotected User Data Exposure via Permissions Issue

CVE-2026-28824 MEDIUM

macOS <14.8.5 - Privilege Escalation

CVE-2026-28823 MEDIUM

macOS < 26.4 - Unprotected System File Deletion via Path Handling Issue

CVE-2026-28818 MEDIUM

macOS < 14.8.5, < 15.7.5, < 26.4 - Unprotected User Data Exposure via Logging Issue

CVE-2026-20697 MEDIUM

macOS <14.8.5 - Privilege Escalation

CVE-2026-20684 LOW

macOS < 26.4 - Gatekeeper Bypass via Permissions Issue

CVE-2026-20632 MEDIUM

Apple macOS <26.4 - Info Disclosure

CVE-2026-20622 HIGH

macOS < 15.7.4 and < 26.3 - Unprotected User Data Exposure via Temporary File Handling

CVE-2026-33316 HIGH

Vikunja’s Improper Access Control Enables Bypass of Administrator-Imposed Account Disablement

CVE-2026-33484 HIGH

Langflow has Unauthenticated IDOR on Image Downloads

Previous Page 19 of 204 Next

Details

Vulnerabilities 5,085

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy