CWE-640

246 vulnerabilities with CWE-640

CVE-2026-28681 HIGH

IRRd 4.4.0-4.4.4/4.5.0 - Open Redirect

CVSS 8.1

CVE-2026-28268 CRITICAL

Vikunja <2.1.0 - Auth Bypass

CVSS 9.8

CVE-2026-28213 CRITICAL

EverShop <2.1.1 - Auth Bypass

CVSS 9.8

CVE-2026-27593 CRITICAL

Statmatic <6.3.3/5.73.10 - Auth Bypass

CVSS 9.3

CVE-2026-2895 LOW

funadmin <=7.1.0-rc4 - Weak Password Recovery

CVSS 3.7

CVE-2026-2564 HIGH

Intelbras VIP 3260 Z IA 2.840.00IB005.0.T - Auth Bypass

CVSS 8.1

CVE-2026-2543 LOW

vichan-devel vichan <5.1.5 - Auth Bypass

CVSS 2.7

CVE-2026-26273 CRITICAL

Idno Known < 1.6.3 - Information Disclosure

CVSS 9.8

CVE-2020-37172 MEDIUM

AVideo Platform 8.1 - CSRF

CVSS 5.3

CVE-2020-37158 MEDIUM

AVideo Platform 8.1 - CSRF

CVSS 5.3

CVE-2026-25858 CRITICAL

macrozheng mall <1.0.3 - Auth Bypass

CVSS 9.8

CVE-2025-4320 CRITICAL

Birebirsoft Sufirmam <23012026 - Auth Bypass

CVSS 10.0

CVE-2025-4319 CRITICAL

Birebirsoft Sufirmam <23012026 - Auth Bypass

CVSS 9.4

CVE-2026-1325 MEDIUM

Sangfor Operation And Maintenance Sec... - Password Reset Weakness

CVSS 5.3

CVE-2022-50910 CRITICAL

Beehive Forum 1.5.2 - Host Header Injection

CVSS 9.8

CVE-2025-63314 CRITICAL

DDSN Interactive Acora CMS <10.7.1 - Code Injection

CVSS 10.0

CVE-2025-15398 LOW

Uatech Badaso < 2.9.7 - Password Reset Weakness

CVSS 3.7

CVE-2025-14783 MEDIUM

Easy Digital Downloads <3.6.2 - Open Redirect

CVSS 4.3

CVE-2023-53958 HIGH

LDAP Tool Box Self Service Password 1.5.2 - SSRF

CVSS 7.5

CVE-2025-65203 HIGH

KeePassXC-Browser <1.9.9.2 - Info Disclosure

CVSS 7.1

CVE-2025-14696 MEDIUM

Shenzhen Sixun Software Sixun Shanghui Group Business Management Sy...

CVSS 5.3

CVE-2025-64113 CRITICAL

Nuget Mediabrowser.server.core < 4.9.1.81 - Password Reset Weakness

CVSS 9.8

CVE-2025-53704 HIGH

Pivot Client - Privilege Escalation

CVSS 7.5

CVE-2024-32642 HIGH

Masacms < 7.2.8 - Origin Validation Error

CVSS 8.8

CVE-2025-66225 HIGH

OrangeHRM <5.7 - Info Disclosure

CVSS 8.8