Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,300 vulnerabilities with CWE-284

CVE-2025-21425 HIGH

Qualcomm QAM8255P and other Firmware - Memory Corruption via HAB Process Improper Access Control

CVE-2025-3325 MEDIUM

iteaj iboot 1.1.3 - Improper Access Control in Admin Password Handler

CVE-2025-3324 MEDIUM

godcheese Nimrod 0.8 - Unrestricted File Upload in FileRestController

CVE-2025-3305 MEDIUM

IKUN_Library 1.0 - Improper Access Controls

CVE-2025-3298 MEDIUM

SourceCodester Online Eyewear Shop 1.0 - Info Disclosure

CVE-2025-3256 MEDIUM

xujiangfei admintwo 1.0 - Improper Access Controls

CVE-2025-3255 MEDIUM

xujiangfei admintwo 1.0 - Improper Access Controls

CVE-2025-3244 MEDIUM

Senior-walter Web-based Pharmacy Product Management System - Improper Access Control

CVE-2025-3237 MEDIUM

Tenda FH1202 1.2.0.14(408) - Info Disclosure

CVE-2025-3236 MEDIUM

Tenda FH1202 1.2.0.14(408) - Info Disclosure

CVE-2025-1865 HIGH

Kernel Driver - Privilege Escalation

CVE-2025-31486 MEDIUM

Vite server.fs.deny Bypass - Local File Inclusion

CVE-2025-3169 MEDIUM

Projeqtor <12.0.2 - Unrestricted Upload

CVE-2025-3123 MEDIUM

WonderCMS 3.5.0 - Unrestricted File Upload in Theme Installation/Plugin Installation

CVE-2025-31484 CRITICAL

conda-forge infrastructure - Auth Bypass

CVE-2025-31726 MEDIUM

Jenkins Stack Hammer Plugin <1.0.6 - Info Disclosure

CVE-2025-31725 MEDIUM

Jenkins monitor-remote-job Plugin 1.0 - Info Disclosure

CVE-2025-3082 LOW

MongoDB 5.0.0-5.0.30 - Improper Access Control via View Collation Manipulation

CVE-2025-3042 MEDIUM

Project Worlds Online Time Table Generator 1.0 - Unrestricted File Upload via pic Parameter

CVE-2025-3041 MEDIUM

Project Worlds Online Time Table Generator 1.0 - Unrestricted File Upload via pic Parameter

CVE-2025-3040 MEDIUM

Project Worlds Online Time Table Generator 1.0 - Unrestricted File Upload via pic Parameter in add_student.php

CVE-2025-31187 MEDIUM

macOS < 13.7.5, < 14.7.5, < 15.4 - Unprotected File System Modification

CVE-2025-30462 CRITICAL

macOS Ventura <13.7.5 - Code Injection

CVE-2025-30460 HIGH

macOS Ventura <13.7.5 - Info Disclosure

CVE-2025-30450 MEDIUM

macOS < Ventura 13.7.5 - Info Disclosure

Previous Page 78 of 212 Next

Details

Vulnerabilities 5,300

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy