Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-863

CWE-863

High likelihood

Incorrect Authorization

Parent: CWE-285 - Improper Authorization

The product performs an authorization check when an actor attempts to access a resource or perform an action, but it does not correctly perform the check.

3,099 vulnerabilities with CWE-863

CVE-2021-24917 HIGH

WPS Hide Login <1.9.1 - Info Disclosure

CVE-2021-4026 MEDIUM

BookStack < 21.11.2 - Improper Access Control

CVE-2021-24842 MEDIUM

WordPress Plugin <1.12 - Info Disclosure

CVE-2021-43560 MEDIUM

Moodle <3.11.3-3.9.10 - Info Disclosure

CVE-2021-22966 HIGH

Concrete CMS <8.5.6 - Privilege Escalation

CVE-2021-39234 MEDIUM

Apache Ozone < 1.2.0 - Authenticated Security Bypass via Block ID Manipulation

CVE-2021-43553 LOW

OSIsoft PI Vision < 2021 - Incorrect Authorization

CVE-2021-24851 MEDIUM

WordPress Insert Pages <3.7.0 - Info Disclosure

CVE-2021-41244 CRITICAL

Grafana 8.0.0-8.2.3 - Unauthorized Role Modification via Fine-Grained Access Control

CVE-2021-3577 HIGH

Motorola-branded Binatone Hubble Cameras - RCE

CVE-2021-1903 MEDIUM

Qualcomm AQT1000 Firmware - Denial of Service via Channel Switch Announcement IE Length Check Bypass

CVE-2021-40504 MEDIUM

SAP NetWeaver Application Server ABAP and ABAP Platform 700-756 - Incorrect Authorization in Template Role

CVE-2021-20119 HIGH

Arris SurfBoard SB8200 Firmware - Incorrect Authorization via Password Change Utility

CVE-2021-42026 MEDIUM

Mendix 8.0.0-8.18.12 and < 9.6.2 - Authenticated Incorrect Authorization

CVE-2021-42025 MEDIUM

Mendix 8.0.0-8.18.12 and <9.6.2 - Authenticated Incorrect Authorization for System.FileDocument Objects

CVE-2021-24788 MEDIUM

Batch Cat WP <0.3 - Privilege Escalation

CVE-2021-24783 MEDIUM

Post Expirator <2.6.0 - Privilege Escalation

CVE-2021-22051 MEDIUM

Spring Cloud Gateway < 2.2.10 and 3.0.0-3.0.5 - Incorrect Authorization

CVE-2021-41230 MEDIUM

Pomerium 0.14.0-0.15.5 - Incorrect Authorization via OIDC Claims

CVE-2021-25506 MEDIUM

Samsung Health <6.19.1.0001 - Info Disclosure

CVE-2021-39904 MEDIUM

GitLab 13.1-14.2.5, 14.3-14.3.3, 14.4 - Improper Access Control in GraphQL API

CVE-2021-39902 MEDIUM

GitLab 13.4-14.2.6 - Incorrect Authorization in Incident Severity Modification

CVE-2021-21693 CRITICAL

Jenkins < 2.303.3 and < 2.319 - Incorrect Authorization in Temporary File Creation

CVE-2021-39341 HIGH

OptinMonster < 2.6.4 - Sensitive Information Disclosure via Insufficient Authorization

CVE-2021-24770 MEDIUM

Stylish Price List WP <6.9.1 - Auth Bypass

Previous Page 94 of 124 Next

Details

Vulnerabilities 3,099

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy