Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-306

CWE-306

High likelihood

Missing Authentication for Critical Function

Parent: CWE-287 - Improper Authentication

The product does not perform any authentication for functionality that requires a provable user identity or consumes a significant amount of resources.

2,344 vulnerabilities with CWE-306

CVE-2026-27944 CRITICAL

nginxui/nginx_ui < 2.3.3 - Unauthenticated Sensitive Data Exposure via Backup Endpoint

CVE-2026-30784 CRITICAL

RustDesk Server - Privilege Escalation

CVE-2026-23767 CRITICAL

Epson ESC/POS Firmware - Missing Authentication for Critical Function

CVE-2026-27446 CRITICAL

Apache Artemis/ActiveMQ Artemis - Auth Bypass

CVE-2026-27012 CRITICAL

OpenSTAManager <2.9.8 - Privilege Escalation

CVE-2026-1775 HIGH

Labkotec LID-3300IP - Command Injection

CVE-2026-2844 HIGH

Microchip TimePictra 11.0-11.3 SP2 - Auth Bypass

CVE-2026-28352 MEDIUM

Indico < 3.3.11 - Unauthenticated Critical Function Access via Event Series API Endpoint

CVE-2026-27028 CRITICAL

OCPP WebSocket - Privilege Escalation

CVE-2026-27772 CRITICAL

OCPP WebSocket - Privilege Escalation

CVE-2026-27767 CRITICAL

OCPP WebSocket - Privilege Escalation

CVE-2026-25851 CRITICAL

OCPP WebSocket - Privilege Escalation

CVE-2026-24731 CRITICAL

OCPP WebSocket - Privilege Escalation

CVE-2026-20781 CRITICAL

OCPP WebSocket - Privilege Escalation

CVE-2026-27449 HIGH

Umbraco Engage <16.2.1/17.1.1 - Auth Bypass

CVE-2026-22207 CRITICAL

OpenViking <=0.1.18 - Privilege Escalation

CVE-2026-27509 HIGH

Unitree Go2 V1.1.7-V1.1.9/V1.1.11 - RCE

CVE-2026-3194 MEDIUM

Chia Blockchain 2.1.0 - Auth Bypass

CVE-2026-3192 MEDIUM

Chia Blockchain 2.1.0 - Auth Bypass

CVE-2026-27846 MEDIUM

Linksys MR9600 1.0.4.205530 and MX4200 1.0.13.210200 - Unauthenticated Information Disclosure via Mesh Device Addition

CVE-2026-2624 CRITICAL

Antikor NGFW 2.0.1298-2.0.1301 - Auth Bypass

CVE-2026-27595 HIGH

Parse Dashboard 7.3.0-9.0.0 - Auth Bypass

CVE-2026-26340 HIGH

Tattile Smart+/Vega/Basic <1.181.5 - Auth Bypass

CVE-2026-27584 HIGH

ActualBudget <26.2.1 - Info Disclosure

CVE-2026-3053 HIGH

DataLinkDC dinky <1.2.5 - Auth Bypass

Previous Page 13 of 94 Next

Details

Vulnerabilities 2,344

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy