Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-284

CWE-284

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

5,300 vulnerabilities with CWE-284

CVE-2024-47760 HIGH

GLPI <10.0.17 - Privilege Escalation

CVE-2024-47758 HIGH

GLPI <10.0.17 - Privilege Escalation

CVE-2024-12294 MEDIUM

WPBeginner plugin - Info Disclosure

CVE-2024-43717 MEDIUM

Adobe Experience Manager < 6.5.22.0 and < 2024.11.0 - Security Feature Bypass via Improper Access Control

CVE-2024-43716 MEDIUM

Adobe Experience Manager <6.5.22.0 and <2024.11.0 - Security Feature Bypass via Improper Access Control

CVE-2024-54038 MEDIUM

Adobe Connect <12.6, 11.4.7 - Auth Bypass

CVE-2024-11868 MEDIUM

LearnPress - WordPress LMS Plugin <4.2.7.3 - Info Disclosure

CVE-2024-49600 HIGH

Dell Power Manager <3.17 - Privilege Escalation

CVE-2024-12307 MEDIUM

Unifiedtransform <2.0 - Privilege Escalation

CVE-2024-12306 MEDIUM

Unifiedtransform 2.0 - Info Disclosure

CVE-2024-12235 MEDIUM

AgileBPM <= 1.0.0 - Improper Access Control in AuthorizationTokenCheckFilter

CVE-2024-12233 HIGH

Online Notice Board <= 1.0 - Unrestricted File Upload via Profile Picture Handler

CVE-2024-10937 MEDIUM

Related Posts plugin <2.0.58 - Info Disclosure

CVE-2024-20397 MEDIUM

Cisco NX-OS Software - Privilege Escalation

CVE-2024-11961 MEDIUM

Guangzhou Huayi Intelligent Technology Jeewms 3.7 - Info Disclosure

CVE-2024-11674 MEDIUM

CodeAstro Hospital Management System 1.0 - Unrestricted Upload

CVE-2024-11661 MEDIUM

Free Exam Hall Seating Management System 1.0 - Unrestricted File Upload in Profile Image Handler

CVE-2024-11483 MEDIUM

Ansible Automation Platform - Privilege Escalation

CVE-2024-8805 HIGH

BlueZ HID over GATT Profile - Access Control Code Execution

CVE-2024-10393 MEDIUM

Tutor LMS < 2.7.6 - Unauthenticated User Registration Bypass via Missing users_can_register Check

CVE-2024-11484 MEDIUM

Code4Berry Decoration Management System 1.0 - Improper Access Controls

CVE-2024-48899 MEDIUM

Moodle 4.4.0-4.4.3 - Improper Access Control in Course Badge Listing

CVE-2024-37155 MEDIUM

OpenCTI < 6.1.9 - Unauthenticated Improper Access Control via GraphQL Introspection Query Bypass

CVE-2024-22067 MEDIUM

ZTE NH8091 Firmware - Authenticated Remote Code Execution via Web Module Interface

CVE-2024-52514 MEDIUM

Nextcloud Server 21.0.0-21.0.9.18 27.0.0-27.1.9 - Improper Access Control via Folder Copy Bypass

Previous Page 92 of 212 Next

Details

Vulnerabilities 5,300

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy