Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-288

CWE-288

Authentication Bypass Using an Alternate Path or Channel

Parent: CWE-306 - Missing Authentication for Critical Function

The product requires authentication, but the product has an alternate path or channel that does not require authentication.

521 vulnerabilities with CWE-288

CVE-2026-22572 HIGH

Fortinet FortiAnalyzer 7.6.0-7.6.3 - Auth Bypass

CVE-2026-30777 MEDIUM

EC-CUBE - Auth Bypass

CVE-2026-27390 HIGH

WeDesignTech Ultimate Booking Addon <=1.0.1 - Auth Bypass

CVE-2026-27389 CRITICAL

WeDesignTech Ultimate Booking Addon <=1.0.1 - Auth Bypass

CVE-2026-20079 CRITICAL

Cisco Secure FMC - Auth Bypass

CVE-2026-2628 CRITICAL

All-in-One Microsoft 365 & Entra ID / Azure AD SSO Login <2.2.5 - Authentication Bypass

CVE-2026-28411 CRITICAL

WeGIA <3.6.5 - Auth Bypass

CVE-2026-27707 HIGH

Seerr 2.0.0-3.1.0 - Auth Bypass

CVE-2026-22205 HIGH

SPIP <4.4.10 - Auth Bypass

CVE-2026-1241 HIGH

Pelco Sarix Professional 3 Series - Auth Bypass

CVE-2026-1779 HIGH

WordPress User Registration & Membership <=5.1.2 - Auth Bypass

CVE-2026-1747 MEDIUM

GitLab EE - Privilege Escalation

CVE-2026-27611 MEDIUM

FileBrowser Quantum <1.1.3/1.2.6 - Auth Bypass

CVE-2026-2791 CRITICAL

Firefox <148 & ESR <140.8 - Auth Bypass

CVE-2026-2784 CRITICAL

Firefox <148 - Auth Bypass

CVE-2026-2775 CRITICAL

Firefox <148 - Auth Bypass

CVE-2026-22341 MEDIUM

Case-Themes Booked <=3.0.0 - Auth Bypass

CVE-2026-2540 HIGH

Micca KE700 - Replay Attack

CVE-2026-1618 HIGH

Universal Software Inc. FlexCity/Kiosk <1.0.36 - Privilege Escalation

CVE-2026-1603 HIGH KEV

Ivanti Endpoint Manager < 2024 - Authentication Bypass

CVE-2026-2096 CRITICAL

Agentflow - Auth Bypass

CVE-2026-2095 CRITICAL

Agentflow - Auth Bypass

CVE-2026-0948 MEDIUM

Jaseerkinangattil Microsoft Entra ID Sso Login - Privilege Escalation

CVE-2026-24858 CRITICAL KEV

Fortinet Fortianalyzer < 7.0.15 - Authentication Bypass

CVE-2026-23760 CRITICAL KEV

SmarterTools SmarterMail <9511 - Auth Bypass

Previous Page 3 of 21 Next

Details

Vulnerabilities 521

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy