Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,270 vulnerabilities with CWE-284

CVE-2025-65798 MEDIUM

usememos <0.25.2 - Privilege Escalation

CVE-2025-65796 MEDIUM

usememos memos <0.25.2 - Privilege Escalation

CVE-2025-14219 MEDIUM

Campcodes Retro Basketball Shoes Online Store 1.0 - Unrestricted File Upload via product_image Argument

CVE-2025-14199 MEDIUM

Verysync <2.21.3 - Unrestricted Upload

CVE-2025-14198 MEDIUM

Verysync 微力同步 2.21.3 - Info Disclosure

CVE-2025-14197 MEDIUM

Verysync <= 2.21.3 - Information Disclosure in Web Administration Module

CVE-2025-14195 MEDIUM

Employee Profile Management System 1.0 - Unrestricted File Upload via per_file Argument

CVE-2025-66557 MEDIUM

Nextcloud Deck <1.14.6-1.15.2 - Privilege Escalation

CVE-2025-14086 MEDIUM

youlai-mall 1.0.0/2.0.0 - Improper Access Control via OpenID Parameter

CVE-2025-14052 MEDIUM

youlai-mall 1.0.0/2.0.0 - Improper Access Control in getMemberById Function

CVE-2025-66509 CRITICAL

LaraDashboard < 2.3.0 - Unauthenticated Arbitrary Code Execution via Host Header Spoofing

CVE-2025-63363 HIGH

Waveshare RS232/485 TO WIFI ETH - DoS

CVE-2025-63681 MEDIUM

open-webui <0.6.33 - Privilege Escalation

CVE-2025-57213 HIGH

platform v1.0.0 - Improper Access Control in orderService.queryObject

CVE-2025-57212 HIGH

platform 1.0.0 - Improper Access Control in ApiOrderService.java

CVE-2025-57210 HIGH

platform 1.0.0 - Improper Access Control in ApiPayController

CVE-2025-65097 MEDIUM

RomM <4.4.1-4.4.1-beta.2 - Privilege Escalation

CVE-2025-65096 MEDIUM

RomM <4.4.1-4.4.1-beta.2 - Info Disclosure

CVE-2025-65841 MEDIUM

Aquarius Desktop 3.0.069 - Info Disclosure

CVE-2025-13949 MEDIUM

ProudMuBai GoFilm <1.0.1 - Unrestricted Upload

CVE-2025-59703 CRITICAL

Entrust nShield HSM <13.6.12 - Physical Tampering via F14 Attack

CVE-2025-59702 HIGH

Entrust nShield HSM <13.6.12 Authenticated Tamper Event Falsification

CVE-2025-59697 HIGH

Entrust nShield HSM <13.6.12 Privilege Escalation via GRUB

CVE-2025-55749 HIGH

XWiki <16.10.11, 17.4.4, 17.7.0 - Info Disclosure

CVE-2025-61229 HIGH

Shirt Pocket's SuperDuper! <3.10 - Privilege Escalation

Previous Page 43 of 211 Next

Details

Vulnerabilities 5,270

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy