Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,213 vulnerabilities with CWE-862

CVE-2026-29515 CRITICAL

MiCode FileExplorer - Unauthenticated Authentication Bypass in SwiFTP FTP Server

CVE-2026-1781 MEDIUM

MC4WP: Mailchimp for WordPress <=4.11.1 - Auth Bypass

CVE-2026-31834 HIGH

Umbraco 15.3.1-16.5.0/17.2.1 - Privilege Escalation

CVE-2026-31821 MEDIUM

Sylius <2.0.16/2.1.12/2.2.3 - Auth Bypass

CVE-2026-31800 CRITICAL

Parse Server <9.5.2-alpha.12/8.6.25 - Auth Bypass

CVE-2026-3582 MEDIUM

GitHub Enterprise Server - Incorrect Authorization

CVE-2026-26742 HIGH

PX4 Autopilot 1.12.x-1.15.x - Auth Bypass

CVE-2026-26741 HIGH

PX4 Autopilot 1.12.x-1.15.x - Logic Flaw

CVE-2026-30970 CRITICAL

Coral Server < 1.1.0 - Unauthenticated Resource Exhaustion via Session Creation Endpoint

CVE-2026-30968 CRITICAL

Coral Server < 1.1.0 - Unauthenticated Message Injection or Observation via SSE Endpoint

CVE-2026-30959 MEDIUM

OneUptime < 10.0.21 - Authenticated Authorization Bypass via Resend-Verification-Code Endpoint

CVE-2026-30956 CRITICAL

OneUptime < 10.0.21 - Missing Authorization via Forged is-multi-tenant-query Header

CVE-2026-30920 HIGH

OneUptime < 10.0.19 - Missing Authorization in GitHub App Callback

CVE-2026-30885 MEDIUM

WWBN AVideo <25.0 - Info Disclosure

CVE-2026-27688 MEDIUM

SAP NetWeaver ABAP - Privilege Escalation

CVE-2026-27687 MEDIUM

SAP S/4HANA HCM Portugal - Info Disclosure

CVE-2026-27686 MEDIUM

SAP Business Warehouse - Authenticated Missing Authorization Check in Service API

CVE-2026-24313 MEDIUM

SAP Solution Tools Plug-In - Missing Authorization for System Information Disclosure

CVE-2026-24310 LOW

SAP NetWeaver ABAP - Info Disclosure

CVE-2026-24309 MEDIUM

SAP NetWeaver ABAP - Privilege Escalation

CVE-2026-30926 HIGH

SiYuan <3.5.10 - Privilege Escalation

CVE-2026-28433 MEDIUM

Misskey 10.93.0-2026.3.0 - Auth Bypass

CVE-2026-25045 HIGH

Budibase < 3.32.3 - Missing Authorization in /api/global/users Endpoint

CVE-2026-3638 MEDIUM

Devolutions Server <2025.3.11.0 - Privilege Escalation

CVE-2026-3770 MEDIUM

SourceCodester Computer Laboratory Management System 1.0 - Cross-Site Request Forgery

Previous Page 40 of 329 Next

Details

Vulnerabilities 8,213

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy