Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,085 vulnerabilities with CWE-284

CVE-2026-4218 LOW

myAEDES App aedes.me.beta EngageBayUtils.java information disclosure

CVE-2026-4201 HIGH

glowxq glowxq-oj SysFileController.java upload unrestricted upload

CVE-2026-4194 HIGH

D-Link DNS-1550-04 system_mgr.cgi cgi_set_wto access control

CVE-2026-4193 HIGH

D-Link DIR-823G goahead UpdateClientInfo access control

CVE-2026-4191 HIGH

node-api-postgres up to 2.5 - Unrestricted Upload

CVE-2026-4180 HIGH

D-Link DIR-816 1.10CNB05 - Auth Bypass

CVE-2026-3111 MEDIUM

Educativa Campus Profile Photos - Insecure Direct Object Reference

CVE-2026-3110 HIGH

Educativa Campus User Export - Insecure Direct Object Reference

CVE-2026-32720 HIGH

Improper Access Control in github.com/ctfer-io/monitoring

CVE-2026-0977 MEDIUM

IBM CICS Transaction Gateway 9.3-10.1 - Path Traversal

CVE-2026-4105 MEDIUM

Red Hat Enterprise Linux 10 - Improper Access Control via systemd-machined RegisterMachine D-Bus Method

CVE-2026-32138 HIGH

NEXULEAN < 2.0.0 - Unauthenticated API Key Exposure

CVE-2026-21667 CRITICAL

Veeam Backup & Replication 12.0.0.1402-12.3.2.4465 - Authenticated Remote Code Execution

CVE-2026-21666 CRITICAL

Veeam Backup & Replication 12.0.0.1402-12.3.2.4465 - Authenticated Remote Code Execution

CVE-2026-3940 MEDIUM

Google Chrome <146.0.7680.71 - Auth Bypass

CVE-2026-3939 MEDIUM

Google Chrome <146.0.7680.71 - Auth Bypass

CVE-2026-3938 MEDIUM

Google Chrome <146.0.7680.71 - Info Disclosure

CVE-2026-3934 MEDIUM

Google Chrome <146.0.7680.71 - Auth Bypass

CVE-2026-3932 HIGH

Google Chrome Android <146.0.7680.71 - Auth Bypass

CVE-2026-27591 CRITICAL

Winter CMS <1.0.477/1.1.12/1.2.12 - Privilege Escalation

CVE-2026-32102 MEDIUM

OliveTin <=3000.10.2 - Info Disclosure

CVE-2026-31874 CRITICAL

Taskosaur 1.0.0 - Privilege Escalation

CVE-2026-24509 LOW

Dell Alienware Command Center < 6.12.24.0 - Denial of Service via Improper Access Control

CVE-2026-31872 HIGH

Parse Server <9.6.0-alpha.6/8.6.32 - Auth Bypass

CVE-2026-3429 MEDIUM

Keycloak Account REST API - Privilege Escalation

Previous Page 21 of 204 Next

Details

Vulnerabilities 5,085

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy