Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,300 vulnerabilities with CWE-284

CVE-2025-45237 HIGH

DBSyncer 2.0.6 - Improper Access Control in Config Download Endpoint

CVE-2025-4281 MEDIUM

Shenzhen Sixun Software Sixun Shanghui Group Business Management Sy...

CVE-2025-4316 MEDIUM

Devolutions Server 2024.3.15.0-2025.1.6.0 - Improper Access Control via PAM Self-Approval

CVE-2025-4271 MEDIUM

TOTOLINK A720R 4.1.5cu.374 - Info Disclosure

CVE-2025-4270 MEDIUM

TOTOLINK A720R 4.1.5cu.374 - Info Disclosure

CVE-2025-4269 MEDIUM

TOTOLINK A720R 4.1.5cu.374 - Improper Access Controls

CVE-2025-4259 MEDIUM

newbee-mall 1.0 - Unrestricted Upload

CVE-2025-4258 MEDIUM

zhangyanbo2007 youkefu <4.2.0 - Unrestricted Upload

CVE-2025-46635 HIGH

Tenda RX2 Pro 16.03.30.14 - Info Disclosure

CVE-2025-46629 MEDIUM

Tenda RX2 Pro 16.03.30.14 - Unauth RCE

CVE-2025-46628 HIGH

Tenda RX2 Pro Firmware 16.03.30.14 - Unauthenticated Remote Code Execution via ATE Service UDP Packet

CVE-2025-46566 CRITICAL

DataEase <2.10.9 - Authenticated RCE

CVE-2025-46331 CRITICAL

OpenFGA 1.3.6-1.8.10 - Authorization Bypass via Check and ListObject Calls

CVE-2025-24887 MEDIUM

OpenCTI <6.4.10 - Privilege Escalation

CVE-2025-46619 HIGH

Couchbase Server <7.6.4 - Privilege Escalation

CVE-2025-32376 MEDIUM

Discourse < 3.4.3 - Improper Access Control via Direct Message User Limit Bypass

CVE-2025-27134 HIGH

Joplin 3.3.3 Server - Privilege Escalation

CVE-2025-4119 MEDIUM

Weitong Mall 1.0.0 - Improper Access Control in Product Statistics Handler

CVE-2025-4118 MEDIUM

Weitong Mall 1.0.0 - Improper Access Control in Product History Handler

CVE-2025-46552 MEDIUM

KHC-INVITATION-AUTOMATION <1.2 - Info Disclosure

CVE-2025-25962 CRITICAL

Coresmartcontracts Uniswap <4.0 - Privilege Escalation

CVE-2025-4067 MEDIUM

ScriptAndTools Online-Travling-System 1.0 - Improper Access Control in /admin/viewpackage.php

CVE-2025-4066 HIGH

ScriptAndTools Online-Travling-System 1.0 - Improper Access Control in /admin/addpackage.php

CVE-2025-4065 HIGH

ScriptAndTools Online-Travling-System 1.0 - Improper Access Control in /admin/addadvertisement.php

CVE-2025-4064 MEDIUM

ScriptAndTools Online-Travling-System 1.0 - Improper Access Control in /admin/viewenquiry.php

Previous Page 73 of 212 Next

Details

Vulnerabilities 5,300

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy