Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,269 vulnerabilities with CWE-284

CVE-2026-2861 MEDIUM

Foswiki < 2.1.11 - Exposure of Sensitive Information via Changes/Viewfile/Oops Component

CVE-2026-2852 MEDIUM

yeqifu warehouse - Privilege Escalation

CVE-2026-2851 MEDIUM

yeqifu warehouse - Privilege Escalation

CVE-2026-2850 MEDIUM

yeqifu warehouse - Privilege Escalation

CVE-2026-2849 MEDIUM

yeqifu warehouse - Privilege Escalation

CVE-2026-21627 CRITICAL

Tassos Framework Plugin - Auth Bypass

CVE-2026-26977 MEDIUM

Frappe LMS <=2.44.0 - Info Disclosure

CVE-2026-26328 MEDIUM

OpenClaw <2026.2.14 - Privilege Escalation

CVE-2026-26325 HIGH

OpenClaw <2026.2.14 - Command Injection

CVE-2026-21535 HIGH

Microsoft Teams - Unauthenticated Information Disclosure via Improper Access Control

CVE-2026-25229 MEDIUM

Gogs <=0.13.4 - Privilege Escalation

CVE-2026-2684 HIGH

Tsinghua Unigroup EA <=3.2.210802 - Unrestricted Upload

CVE-2026-2669 MEDIUM

Rongzhitong Visual Platform - Auth Bypass

CVE-2026-2668 HIGH

Rongzhitong Visual Platform - Auth Bypass

CVE-2026-2667 MEDIUM

Rongzhitong Visual Platform - Auth Bypass

CVE-2026-2666 MEDIUM

mingSoft MCMS 6.1.1 - Unrestricted Upload

CVE-2026-2665 MEDIUM

huanzi-qch base-admin - Unrestricted Upload

CVE-2026-23595 HIGH

HPE Aruba Networking Private 5G Core 1.24.3.0-1.24.3.2 - Unauthenticated Authentication Bypass via API

CVE-2026-2592 HIGH

Zarinpal Gateway for WooCommerce <=5.0.16 - Auth Bypass

CVE-2026-2550 CRITICAL

EFM iptime A6004MX 14.18.2 - Unrestricted Upload

CVE-2026-2549 HIGH

LibrarySystem 图书馆管理系统 <1.1.1 - Auth Bypass

CVE-2026-23856 HIGH

Dell iDRAC Service Module - Privilege Escalation

CVE-2026-20642 LOW

iPadOS < 26.3 - Unauthorized Photo Access from Lock Screen

CVE-2026-20638 MEDIUM

iPadOS < 26.3 - Unauthorized Information Disclosure via Live Caller ID Extension

CVE-2026-20628 HIGH

iPadOS < 18.7.5 - Improper Access Control

Previous Page 32 of 211 Next

Details

Vulnerabilities 5,269

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy