Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-639

CWE-639

High likelihood

Authorization Bypass Through User-Controlled Key

Parent: CWE-863 - Incorrect Authorization

The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data.

1,570 vulnerabilities with CWE-639

CVE-2026-28788 HIGH

Open WebUI's process_files_batch() endpoint missing ownership check, allows unauthorized file overwrite

CVE-2026-28503 MEDIUM

Tandoor Recipes has Cross-Space IDOR in SyncViewSet.query_synced_folder: missing space scoping on get_object_or_404

CVE-2026-1206 MEDIUM

Elementor Website Builder <= 3.35.7 - Incorrect Authorization to Authenticated (Contributor+) Sensitive Information Exposure via Elementor Template

CVE-2026-34055 HIGH

OpenEMR has IDOR in Patient Notes Web UI allows unauthorized note access/modification

CVE-2026-33934 MEDIUM

OpenEMR's Missing Authorization in show-signature.php Allows Portal Patients to Read Staff Signatures

CVE-2026-33931 MEDIUM

OpenEMR has IDOR in Portal Payment Page that Allows Cross-Patient Record Access

CVE-2026-32120 MEDIUM

OpenEMR has IDOR in Fee Sheet Product Save

CVE-2026-33724 HIGH

n8n's Source Control SSH Configuration Uses StrictHostKeyChecking=no

CVE-2026-33663 MEDIUM

n8n Vulnerable to Credential Theft via Name-Based Resolution and Permission Checker Bypass in Community Edition

CVE-2026-32535 MEDIUM

WordPress JS Help Desk plugin <= 3.0.3 - Insecure Direct Object References (IDOR) vulnerability

CVE-2026-32533 MEDIUM

WordPress LatePoint plugin <= 5.2.6 - Insecure Direct Object References (IDOR) vulnerability

CVE-2026-2414 CRITICAL

Hypr Server < 10.7.2 - Privilege Escalation

CVE-2026-33511 CRITICAL

pyload-ng: Authentication Bypass via Host Header Injection in ClickNLoad

CVE-2026-33345 MEDIUM

solidtime vulnerable to IDOR in private projects

CVE-2026-33160 MEDIUM

Craft CMS: Anonymous "generate transform" calls for assets can expose private assets via transform URL

CVE-2026-33158 MEDIUM

Craft CMS: Low-privilege users could read private asset contents when editing an asset (IDOR)

CVE-2026-33700 MEDIUM

Vikunja has a Link Share Delete IDOR — Missing Project Ownership Check Allows Cross-Project Link Share Deletion

CVE-2026-33678 HIGH

Vikunja has IDOR in Task Attachment ReadOne Allows Cross-Project File Access and Deletion

CVE-2026-33313 MEDIUM

Vikunja has an IDOR in Task Comments Allows Reading Arbitrary Comments

CVE-2026-33484 HIGH

Langflow has Unauthenticated IDOR on Image Downloads

CVE-2026-32300 HIGH

Connect-CMS 1.x-1.41.0/2.x-2.41.0 - Privilege Escalation

CVE-2026-23488 MEDIUM

Blinko: multiple interfaces in the comment feature allow unauthorized access

CVE-2026-23487 MEDIUM

Blinko <1.8.4 - IDOR

CVE-2026-30886 MEDIUM

New API <0.11.4-alpha.2 - IDOR

CVE-2026-33297 CRITICAL

AVideo has an IDOR - Any Admin Can Set Another User's Channel Password via setPassword.json.php

Previous Page 6 of 63 Next

Details

Vulnerabilities 1,570

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy