Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,280 vulnerabilities with CWE-284

CVE-2025-61114 HIGH

2nd Line Android App <v1.2.92 - Info Disclosure

CVE-2025-61118 HIGH

mCarFix Motorists App <2.3 - Privilege Escalation

CVE-2025-61117 HIGH

Senza: Keto & Fasting Android App <2.10.15 - Privilege Escalation

CVE-2025-61116 HIGH

AdForest Classified Android App <4.0.12 - Info Disclosure

CVE-2025-61115 HIGH

ABC Fine Wine & Spirits Android App <v.11.27.5 - Auth Bypass

CVE-2025-61113 HIGH

TalkTalk 3.3.6 Android App - Info Disclosure

CVE-2025-43027 CRITICAL

Genetec Security Center - Privilege Escalation

CVE-2025-61234 HIGH

Dataphone A920 v2025.07.161103 - Info Disclosure

CVE-2025-61156 HIGH

ThreatFire System Monitor <4.7.0.53 - Privilege Escalation

CVE-2025-27093 MEDIUM

Sliver <1.5.43-1.6.0-dev - Command Injection

CVE-2025-60800 HIGH

jshERP <commit 90c411a - Info Disclosure

CVE-2025-60354 HIGH

blog-vue-springboot - Info Disclosure

CVE-2025-12378 HIGH

Simple Food Ordering System 1.0 - Unrestricted File Upload via Photo Argument

CVE-2025-12347 MEDIUM

MaxSite CMS < 109 - Unrestricted File Upload via file_path/content Parameter

CVE-2025-12346 MEDIUM

MaxSite CMS < 109 - Unrestricted File Upload via X-Requested-FileName/X-Requested-FileUpDir Header

CVE-2025-12344 MEDIUM

Yonyou U8 Cloud <5.1sp - Unrestricted Upload

CVE-2025-12331 MEDIUM

Willow CMS < 1.4.0 - Unauthenticated Unrestricted File Upload via /admin/images/add

CVE-2025-60982 MEDIUM

Educare ERP 1.0 - Authenticated Insecure Direct Object Reference

CVE-2025-12301 HIGH

Simple Food Ordering System 1.0 - Unrestricted File Upload via Photo Argument

CVE-2025-54970 MEDIUM

BAE SOCET GXP < 4.6.0.2 - Unauthenticated Job Status Service Access

CVE-2025-54968 HIGH

BAE SOCET GXP < 4.6.0.2 - Unauthenticated Job Submission via Job Service

CVE-2025-12297 MEDIUM

pybbs < 6.0.0 - Information Disclosure in UserApiController

CVE-2025-12291 MEDIUM

ashymuzuro Full-Ecommece-Website & Muzuro Ecommerce System <1.1.0 -...

CVE-2025-60291 CRITICAL

eTimeTrackLite Web <12.0 - Privilege Escalation

CVE-2025-12276 MEDIUM

LearnHouse < 2025-09-21 - Information Disclosure in Image Handler

Previous Page 49 of 212 Next

Details

Vulnerabilities 5,280

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy