Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-639

CWE-639

High likelihood

Authorization Bypass Through User-Controlled Key

Parent: CWE-863 - Incorrect Authorization

The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.

1,777 vulnerabilities with CWE-639

CVE-2026-45750 CRITICAL

Termix Vulnerable to Arbitrary Command Execution in File Manager

CVE-2026-45746 CRITICAL

Termix Vulnerable to Arbitrary Command Execution via Session Hijacking

CVE-2026-45743 HIGH

Termix <2.3.2 File Manager Sessions - Insecure Direct Object Reference

CVE-2026-11369 HIGH

IDOR in Comment API Allows Cross-Process Comment Read and Write

CVE-2026-11142 MEDIUM

Google Chrome < 149.0.7827.53 - Same Origin Policy Bypass via Paint Policy Enforcement

CVE-2026-49192 MEDIUM

Acer Connect M6E 5G Portable WiFi Router - Summary Service Insecure Direct Object Reference

CVE-2026-10597 MEDIUM

ITPison｜OMICARD EDM - Insecure Direct Object Reference

CVE-2026-7201 HIGH

CWE-639: Authorization Bypass Through User-Controlled Key in web services in Progress Sitefinity

CVE-2026-24761 LOW

Kiteworks < 9.3.0 - Authenticated Insecure Direct Object Reference in Secure Data Forms

CVE-2026-24756 MEDIUM

Kiteworks < 9.3.0 - Authenticated Insecure Direct Object Reference in Secure Data Forms

CVE-2026-24755 MEDIUM

Kiteworks < 9.3.0 - Authenticated Authorization Bypass via Secure Data Forms

CVE-2026-24753 MEDIUM

Kiteworks < 9.3.0 - Authenticated Insecure Direct Object Reference in Secure Data Forms

CVE-2026-45810 MEDIUM

Nextcloud Server 31.0.0-31.0.11 and 32.0.0-32.0.2 - Authenticated Unauthorized Comment Access

CVE-2026-45281 HIGH

Nextcloud Server 32.0.0-32.0.8 and 33.0.0-33.0.2 - Authenticated Authorization Bypass in Calendar Backend

CVE-2026-23638 MEDIUM

Kiteworks < 9.3.0 - Authenticated Insecure Direct Object Reference in Secure Data Forms

CVE-2026-45159 LOW

Nextcloud: Files drop share links for end-to-end encrypted folders allowed to drop files into other folders of the share owner

CVE-2026-45155 LOW

Nextcloud: Private circle can be added to another circle via API

CVE-2026-46764 MEDIUM

Apache Airflow: Event Log detail endpoint bypasses DAG-scoped event log permission filter

CVE-2026-41084 HIGH

Apache Airflow: API authorization bypass: bulk TaskInstances allows cross-DAG mutation

CVE-2026-10212 MEDIUM

AstrBotDevs AstrBot astr_main_agent.py astr_main_agent authorization

CVE-2026-10154 MEDIUM

Dolibarr ERP CRM messaging.php authorization

CVE-2026-47266 HIGH

Formie: Unauthenticated front-end submission editing can overwrite existing submissions

CVE-2026-49386 MEDIUM

Jetbrains YouTrack < 2026.1.13570 - Authorization Bypass Through User-Controlled Key

CVE-2026-43917 MEDIUM

Dokploy: Cross-Organization IDOR - Multiple tRPC endpoints missing activeOrganizationId validation

CVE-2026-45551 MEDIUM

Group-Office: Authenticated Stored XSS in Administrator Context via Arbitrary Cross-User Setting Write

Previous Page 3 of 72 Next

Details

Vulnerabilities 1,777

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy