Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,290 vulnerabilities with CWE-284

CVE-2025-7939 MEDIUM

Jerryshensjf JPACookieShop JPA 1.0 - Unrestricted Upload

CVE-2025-44654 CRITICAL

Linksys E2500 3.0.04.002 - Improper Access Control via vsftpd chroot_local_user Misconfiguration

CVE-2025-7931 HIGH

Church Donation System 1.0 - Unrestricted Upload

CVE-2025-44657 LOW

Linksys EA6350 V2.1.2 - Improper Access Control via vsftpd chroot_local_user Misconfiguration

CVE-2025-46118 MEDIUM

Ruckuswireless Ruckus Unleashed - Improper Access Control

CVE-2025-7906 MEDIUM

yangzongzhuan RuoYi <4.8.1 - Unrestricted Upload

CVE-2025-7898 MEDIUM

Codecanyon iDentSoft 2.0 - Unrestricted Upload

CVE-2025-7895 MEDIUM

harry0703 MoneyPrinterTurbo <1.2.6 - Unrestricted Upload

CVE-2025-7880 MEDIUM

MetaCRM <6.4.2 - Unrestricted Upload

CVE-2025-7879 MEDIUM

MetaCRM <6.4.2 - Unrestricted Upload

CVE-2025-7878 MEDIUM

MetaCRM <6.4.2 - Unrestricted Upload

CVE-2025-7877 MEDIUM

MetaCRM <6.4.2 - Unrestricted Upload

CVE-2025-7874 MEDIUM

MetaCRM < 6.4.2 - Information Disclosure via /env.jsp

CVE-2025-7864 MEDIUM

thinkgem JeeSite <5.12.0 - Unrestricted Upload

CVE-2025-52168 MEDIUM

Agorum core <11.10.1 - Info Disclosure

CVE-2025-52166 MEDIUM

Software GmbH Agorum core <11.10.1 - Privilege Escalation

CVE-2025-45157 MEDIUM

Splashin iOS 2.0 - Unauthenticated Improper Access Control

CVE-2025-7755 MEDIUM

Code-projects Online Ordering System 1.0 - Unrestricted Upload

CVE-2025-53028 HIGH

Oracle VM VirtualBox 7.1.10 - Authenticated Remote Code Execution

CVE-2025-50108 MEDIUM

Oracle Hyperion <11.2.20.0.000 - Info Disclosure

CVE-2025-50107 MEDIUM

Oracle Universal Work Queue <12.2.14 - Info Disclosure

CVE-2025-50105 HIGH

Oracle E-Business Suite - Unauthorized Access

CVE-2025-50087 MEDIUM

Oracle MySQL <9.3.0 - Privilege Escalation

CVE-2025-50081 LOW

Oracle MySQL <9.3.0 - Privilege Escalation

CVE-2025-50072 MEDIUM

Oracle WebLogic Server <14.1.2.0.0 - Unauthorized Update

Previous Page 64 of 212 Next

Details

Vulnerabilities 5,290

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy