Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,270 vulnerabilities with CWE-284

CVE-2025-41258 HIGH

LibreChat RAG API Authentication Bypass

CVE-2025-69727 MEDIUM

INDEX-EDUCATION PRONOTE <2025.2.8 - Info Disclosure

CVE-2025-66956 CRITICAL

Asseco SEE Live 2.0 - Improper Access Control in Contact Plan, E-Mail, SMS and Fax Components

CVE-2025-68623 HIGH

Microsoft DirectX 9.29.1974.0 - Privilege Escalation

CVE-2025-62166 HIGH

FreshRSS < 1.28.0 - Authorization Bypass via Master Authentication Token

CVE-2025-70363 HIGH

Ibexa & Ciril GROUP eZ Platform / Ciril Platform 2.x - Unauthenticated Sensitive Data Exposure via REST API

CVE-2025-70614 HIGH

OpenCode Systems OC Messaging 6.32.2 - Privilege Escalation

CVE-2025-48619 HIGH

ContentProvider.java - Privilege Escalation

CVE-2025-15597 MEDIUM

Dataease SQLBot <1.4.0 - Auth Bypass

CVE-2025-63409 HIGH

GCOM EPON 1GE C00R371V00B01 - Privilege Escalation

CVE-2025-12884 MEDIUM

Advanced Ads Plugin <2.0.14 - Auth Bypass

CVE-2025-70064 HIGH

PHPGurukul HMS 4.0 - Privilege Escalation

CVE-2025-70866 HIGH

LavaLite CMS 10.1.0 - Privilege Escalation

CVE-2025-61879 HIGH

Infoblox NIOS <9.0.7 - Privilege Escalation

CVE-2025-69634 CRITICAL

Dolibarr ERP & CRM 22.0.9 - Cross-Site Request Forgery via Notes Field in perms.php

CVE-2025-8025 CRITICAL

Dinosoft ERP <3.0.1-3.0.1 - Privilege Escalation

CVE-2025-29939 MEDIUM

Secure Encrypted Virtualization - Privilege Escalation

CVE-2025-68721 HIGH

Axigen Mail Server <10.5.57 - Privilege Escalation

CVE-2025-70997 MEDIUM

eladmin < 2.7 - Unauthenticated Arbitrary Password Reset

CVE-2025-60865 HIGH

Avanquest Driver Updater <9.1.57803.1174 - Privilege Escalation

CVE-2025-6592 LOW

AbuseFilter <1.43.2-1.44.0 - Info Disclosure

CVE-2025-7016 HIGH

akinsoft qr_menu < s1.05.12 - Authentication Abuse via Improper Access Control

CVE-2025-46691 HIGH

Dell PremierColor Panel Driver <1.0.0.1 - Privilege Escalation

CVE-2025-67645 HIGH

OpenEMR < 7.0.4 - Authenticated Improper Access Control via Profile Edit Endpoint

CVE-2025-70982 CRITICAL

SpringBlade 4.5.0 - Improper Access Control in importUser Function

Previous Page 38 of 211 Next

Details

Vulnerabilities 5,270

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy