CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,300 vulnerabilities with CWE-284
CVE-2024-12370 MEDIUM
WP Hotel Booking <= 2.1.5 - Unauthenticated Room Addition via Missing Capability Check
CVSS 5.3
CVE-2024-55954 HIGH
OpenObserve < 0.14.1 - Authenticated Privilege Escalation via User Removal Endpoint
CVSS 8.7
CVE-2024-45326 MEDIUM
Fortinet FortiDeceptor <6.0.0 - Privilege Escalation
CVSS 4.3
CVE-2024-13240 HIGH
Drupal Open Social <12.05 - Info Disclosure
CVSS 7.5
CVE-2024-13212 MEDIUM
SingMR HouseRent 1.0 - Unrestricted Upload
CVSS 6.3
CVE-2024-13211 MEDIUM
SingMR HouseRent 1.0 - Improper Access Controls
CVSS 6.3
CVE-2024-13210 MEDIUM
donglight bookstore <1.0 - Unrestricted Upload
CVSS 4.7
CVE-2024-13201 MEDIUM
wander-chu SpringBoot-Blog 1.0 - Unrestricted Upload
CVSS 4.7
CVE-2024-13200 HIGH
wander-chu SpringBoot-Blog 1.0 - Info Disclosure
CVSS 7.3
CVE-2024-13191 MEDIUM
ZeroWdd myblog 1.0 - Unrestricted Upload
CVSS 6.3
CVE-2024-40749 HIGH
Product <Version> - Info Disclosure
CVSS 7.5
CVE-2024-13145 MEDIUM
zhenfeng13 My-Blog 1.0 - Unrestricted Upload
CVSS 6.3
CVE-2024-13144 MEDIUM
zhenfeng13 My-Blog 1.0 - Unrestricted Upload
CVSS 6.3
CVE-2024-13138 MEDIUM
wangl1989 mysiteforme 1.0 - Unrestricted Upload
CVSS 4.7
CVE-2024-13134 MEDIUM
ZeroWdd studentmanager 1.0 - Unrestricted Upload
CVSS 6.3
CVE-2024-13133 MEDIUM
ZeroWdd studentmanager 1.0 - Unrestricted Upload
CVSS 6.3
CVE-2024-13110 MEDIUM
Yunfan Learning Examination System 1.9.2 - Information Disclosure in Exam Answer Handler
CVSS 4.3
CVE-2024-13108 MEDIUM
D-Link DIR-816 A2 1.10CNB05_R1B011D88210 - Improper Access Controls
CVSS 5.3
CVE-2024-13107 MEDIUM
D-Link DIR-816 A2 1.10CNB05_R1B011D88210 - Improper Access Controls
CVSS 5.3
CVE-2024-13106 MEDIUM
D-Link DIR-816 A2 1.10CNB05_R1B011D88210 - Improper Access Controls
CVSS 5.3
CVE-2024-13105 MEDIUM
D-Link DIR-816 A2 1.10CNB05_R1B011D88210 - Improper Access Controls
CVSS 5.3
CVE-2024-13104 MEDIUM
D-Link DIR-816 A2 1.10CNB05_R1B011D88210 - Improper Access Controls
CVSS 5.3
CVE-2024-13103 MEDIUM
D-Link DIR-816 A2 1.10CNB05_R1B011D88210 - Improper Access Controls
CVSS 5.3
CVE-2024-13102 MEDIUM
D-Link DIR-816 A2 1.10CNB05_R1B011D88210 - Improper Access Controls
CVSS 5.3
CVE-2024-25133 HIGH
OpenShift Dedicated - Privilege Escalation
CVSS 8.8
Details
Vulnerabilities 5,300
Links
MITRE CWE Entry Search this CWE With Exploits