Search

Blog Stats Labs CLI MCP API Limits About Privacy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Blog Statistics Labs CLI Tool MCP Server API Documentation Rate Limits About Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-807

CWE-807

High likelihood

Reliance on Untrusted Inputs in a Security Decision

Parent: CWE-693 - Protection Mechanism Failure

The product uses a protection mechanism that relies on the existence or values of an input, but the input can be modified by an untrusted actor in a way that bypasses the protection mechanism.

50 vulnerabilities with CWE-807

CVE-2026-27707 HIGH

Seerr 2.0.0-3.1.0 - Auth Bypass

CVE-2026-21514 HIGHKEV

Microsoft Office Word - Info Disclosure

CVE-2026-25958 HIGH

Cubejs-backend Server-core < 1.0.14 - Privilege Escalation

CVE-2026-25931 HIGH

vscode-spell-checker <4.5.4 - Info Disclosure

CVE-2026-21509 HIGHKEV

Microsoft Office - Info Disclosure

CVE-2026-23848 MEDIUM

MyTube <1.7.71 - DoS

CVE-2026-20849 HIGH

Windows Kerberos - Privilege Escalation

CVE-2025-65328 MEDIUM

Mega-Fence <25.1.914 - SSRF

CVE-2025-66507 HIGH

1Panel <2.0.13 - Auth Bypass

CVE-2025-66577 MEDIUM

cpp-httplib <0.27.0 - Log Poisoning

CVE-2025-66570 CRITICAL

cpp-httplib <0.27.0 - Info Disclosure

CVE-2025-10161 HIGH

Turkguven Software Technologies Inc. Perfektive <12574.2701 - Auth ...

CVE-2025-12488 CRITICAL

oobabooga text-generation-webui - RCE

CVE-2025-12487 CRITICAL

oobabooga text-generation-webui - RCE

CVE-2025-11271 MEDIUM

Easy Digital Downloads <3.5.2 - Order Manipulation

CVE-2025-53717 HIGH

Windows VBS Enclave - Privilege Escalation

CVE-2025-59152 HIGH

Litestar 2.17.0 - Auth Bypass

CVE-2025-55736 MEDIUM

flaskBlog <2.8.0 - Privilege Escalation

CVE-2025-55735 MEDIUM

flaskBlog <2.8.0 - XSS

CVE-2025-53882 MEDIUM

openSUSE mailman3 - RCE

CVE-2024-13974 HIGH

Sophos Firewall Firmware < 21.0.1 - Remote Code Execution

CVE-2025-49827 CRITICAL

Conjur OSS <1.22.0 - Auth Bypass

CVE-2024-55354 HIGH

Lucee <5.4.7.3 LTS & 6 <6.1.1.118 - Code Injection

GlobalProtect <unknown - Privilege Escalation

CVE-2025-1969 MEDIUM

TEAM <1.2.2 - Info Disclosure

Page 1 of 2 Next

Details

Vulnerabilities 50

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy