When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
4,195 vulnerabilities with CWE-287
CVE-2026-1524
LOW
Neo4j Enterprise <2026.02 - Auth Bypass
CVE-2026-23813
CRITICAL
AOS-CX - Auth Bypass
CVSS 9.8
CVE-2026-30967
HIGH
Parse Server <9.5.2-alpha.9/8.6.22 - Auth Bypass
CVSS 8.8
CVE-2026-30949
HIGH
Parse Server <9.5.2-alpha.5/8.6.18 - Auth Bypass
CVSS 8.8
CVE-2026-29792
CRITICAL
Feathersjs 5.0.0-5.0.41 - Auth Bypass
CVSS 9.8
CVE-2026-26141
HIGH
Azure Arc - Privilege Escalation
CVSS 7.8
CVE-2026-26128
HIGH
Windows SMB Server - Privilege Escalation
CVSS 7.8
CVE-2026-24294
HIGH
Windows SMB Server - Privilege Escalation
CVSS 7.8
CVE-2026-0953
CRITICAL
Tutor LMS Pro <3.9.5 - Auth Bypass
CVSS 9.8
CVE-2026-3794
HIGH
doramart DoraCMS 3.0.x - Auth Bypass
CVSS 7.3
CVE-2026-3739
MEDIUM
suitenumerique messages 0.2.0 - Auth Bypass
CVSS 6.3
CVE-2026-30863
CRITICAL
Parse Server <8.6.10/9.5.0-alpha.11 - Auth Bypass
CVSS 9.8
CVE-2026-30851
HIGH
Caddy 2.10.0-2.11.1 - Privilege Escalation
CVSS 8.1
CVE-2026-29193
HIGH
ZITADEL 4.0.0-4.12.0 - Auth Bypass
CVSS 8.2
CVE-2026-30223
HIGH
OliveTin <3000.11.1 - Auth Bypass
CVSS 8.8
CVE-2026-30831
CRITICAL
Rocket.Chat <8.2.0 - Auth Bypass
CVSS 9.8
CVE-2026-28514
CRITICAL
Rocket.Chat <8.0.0 - Auth Bypass
CVSS 9.8
CVE-2026-28800
MEDIUM
Natro Macro <1.1.0 - Unauthenticated RCE
CVSS 6.4
CVE-2026-28787
HIGH
OneUptime <=10.0.11 - Auth Bypass
CVSS 8.2
CVE-2026-28428
MEDIUM
Talishar <a9c218e - Auth Bypass
CVSS 5.3
CVE-2026-29093
HIGH
WWBN AVideo <24.0 - Session Hijacking
CVSS 8.1
CVE-2026-28471
MEDIUM
OpenClaw 2026.1.14-1 - Auth Bypass
CVSS 5.3
CVE-2026-3224
CRITICAL
Devolutions Server <2025.3.15.0 - Auth Bypass
CVSS 9.8
CVE-2026-24898
CRITICAL
OpenEMR <8.0.0 - Info Disclosure
CVSS 10.0
CVE-2026-23600
CRITICAL
HPE AutoPass License Server - Auth Bypass
Details
Vulnerabilities
4,195
Exploit Likelihood
High