Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-639

CWE-639

High likelihood

Authorization Bypass Through User-Controlled Key

Parent: CWE-863 - Incorrect Authorization

The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.

1,776 vulnerabilities with CWE-639

CVE-2026-46558 HIGH

Plane: Cross-workspace asset authorization bypass lets any authenticated user read, copy, delete, and overwrite assets in other Plane workspaces

CVE-2026-53471 CRITICAL

Migration-planner: agent api ignores jwt source_id claim

CVE-2026-53470 CRITICAL

Migration-planner: getsourcedownloadurl missing organization check

CVE-2026-45563 MEDIUM

Roxy-WI: IDOR — any authenticated user can read another user's full action history

CVE-2026-45552 CRITICAL

Roxy-WI <= 8.2.6.4 - Cross-Tenant Install Authorization Bypass

CVE-2026-45550 CRITICAL

Roxy-WI: IDOR on PUT /smon/check — any user can rewrite any tenant's monitoring URL/IP/body

CVE-2026-53675 MEDIUM

BuddyPress 14.4.0 Friends List IDOR via REST API

CVE-2026-53673 HIGH

BuddyPress 14.4.0 Private Message IDOR via REST API user_id Parameter

CVE-2026-6444 HIGH

Everpure FlashArray < 6.10.5 - Authorization Bypass Through User-Controlled Key

CVE-2026-44083 CRITICAL

QuMagie < 2.9.1 - Authorization Bypass

CVE-2026-9185 HIGH

6Storage Rentals <= 2.22.0 - Unauthenticated Insecure Direct Object Reference to Arbitrary User Disclosure and Modification via 'userId' Parameter

CVE-2026-49141 HIGH

WACRM Authorization Bypass via Automation Engine Endpoint

CVE-2026-46441 CRITICAL

Flowise: Mass Assignment in Assistant Update Endpoint Allows Cross-Workspace Resource Reassignment

CVE-2026-42863 HIGH

Flowise: Mass Assignment in Chatflow Update Endpoint Allows Cross-Workspace AgentFlow Reassignment

CVE-2026-42862 MEDIUM

Flowise: Mass Assignment in Tool Update Endpoint Allows Cross-Workspace Resource Reassignment

CVE-2026-42861 CRITICAL

Flowise: Mass Assignment in Variable Update Endpoint Allows Cross-Workspace Resource Reassignment

CVE-2026-11500 MEDIUM

Weaviate Static API Key client.go validateConfig authorization

CVE-2026-11461 MEDIUM

NousResearch hermes-agent resume Endpoint hermes_state.py resolve_session_by_title authorization

CVE-2026-9851 HIGH

Booking Package <= 1.7.16 - Authenticated (Editor+) Privilege Escalation via Account Takeover to updateUser AJAX Action

CVE-2026-8839 MEDIUM

MapPress Maps for WordPress <= 2.96.6 - Unauthenticated Insecure Direct Object Reference via REST API Endpoints

CVE-2026-8611 MEDIUM

Klamra Paycal For Aspaclaria < 1.1.4 - IDOR

CVE-2026-7665 MEDIUM

Essential Addons for Elementor <= 6.6.4 - Missing Authorization to Unauthenticated Information Exposure via 'load_more' AJAX Handler

CVE-2026-10038 MEDIUM

Charitable <= 1.8.11.1 - Authenticated (Subscriber+) Insecure Direct Object Reference to Arbitrary Attachment Deletion via 'avatar' Parameter

CVE-2026-46390 MEDIUM

HAX CMS has Unauthenticated Git Access via User-Controlled Key

CVE-2026-45750 CRITICAL

Termix Vulnerable to Arbitrary Command Execution in File Manager

Previous Page 2 of 72 Next

Details

Vulnerabilities 1,776

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy