Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-287

CWE-287

High likelihood

Improper Authentication

Parent: CWE-284 - Improper Access Control

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

4,376 vulnerabilities with CWE-287

Arcade Trade Script 1.0 - Auth Bypass

VirtualBox <2.0.8-2.0.10 - Info Disclosure

Novell eDirectory <8.7.3.10-8.8.5 - DoS

TYPO3 < 4.0.12, 4.1.x < 4.1.13, 4.2.x < 4.2.10, 4.3.x < 4.3beta2 - Improper Authentication via Install Tool

Linux Kernel < 2.6.31.2 - Denial of Service via NFSv4 AUTH_NULL Credentials Cache Access

Everfocus EDR1600 - Unauthenticated Authentication Bypass

Shared Sign-On 5.x and 6.x - Session Fixation

iCRM Basic (com_icrmbasic) 1.4.2.31 - Improper Authentication

OSSIM < 2.1.2 - Unauthenticated Authentication Bypass via Direct Request

Cisco IOS 12.0-12.4 - Unauthenticated Authentication Bypass via Firewall Authentication Proxy Race Condition

Zenas PaoLink 1.0 - Unauthenticated Authentication Bypass via login_ok Parameter

Zenas PaoLiber 1.1 - Unauthenticated Authentication Bypass via login_ok Parameter

CVE-2009-3421 CRITICAL

Zenas PaoBacheca Guestbook 2.1 - Unauthenticated Authentication Bypass via login_ok Parameter

LiveStreet 0.2 - Unauthenticated SQL Injection via Update Script

Ubuntu Linux - Improper Authentication via Empty PAM Module Selection

PostgreSQL 8.2-8.2.14 and 8.3-8.3.8 - Unauthenticated Authentication Bypass via Empty LDAP Password

simplePHPWeb 0.2 - Unauthenticated Administrative Access via admin/files.php

Symantec Altiris Deployment Solution < 6.9 SP3 Build 430 - Authentication Bypass

Red Hat GDM <2.16.0-56 - Auth Bypass

Adobe ColdFusion < 8.0.1 - Session Fixation

IBM WebSphere Application Server <7.0.0.5 - Auth Bypass

IBM WebSphere Application Server <6.1.0.25-7.0.0.5 - Auth Bypass

IBM WebSphere Application Server SCA Feature Pack < 1.0.0.3 - Authenticated Authentication Bypass

Zope Object Database < 3.8.2 - Authentication Bypass via ZEO Network Protocol

sssd 0.4.1 - Improper Authentication via Blank-Password Account Handling

Previous Page 158 of 176 Next

Details

Vulnerabilities 4,376

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy