Lucene search
K

2846 matches found

Nuclei
Nuclei
added yesterday151 views

H3C ER8300G2-X - Password Disclosure

H3C ER8300G2-X is vulnerable to Incorrect Access Control. The password for the router's management system can be accessed via the management system page login interface. id: CVE-2024-32238 info: name: H3C ER8300G2-X - Password Disclosure author: s4e-io,adeljck severity: critical description: | H3...

9.8CVSS7AI score0.53229EPSS
Exploits0References5
EUVD
EUVD
added 2026/07/01 4:7 p.m.7 views

EUVD-2026-41055

Missing Authorization vulnerability in Webba Plugins Webba Booking allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Webba Booking: from n/a through 6.4.13...

5.3CVSS5.8AI score0.002EPSS
Exploits0References1
OSV
OSV
added 2026/06/29 11:50 a.m.7 views

PYSEC-2026-540 Shinken Solutions Shinken Monitoring vulnerable to Incorrect Access Control

Shinken Solutions Shinken Monitoring Version 2.4.3 affected is vulnerable to Incorrect Access Control. The SafeUnpickler class found in shinken/safepickle.py implements a weak authentication scheme when unserializing objects passed from monitoring nodes to the Shinken monitoring server...

9.8CVSS7.2AI score0.01991EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2026/06/19 12:0 a.m.7 views

Lexmark Printers Missing Authentication for Critical Function (CVE-2019-9934)

Various Lexmark products have Incorrect Access Control issue 1 of 2. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid505493; scriptversion"1.3";...

5.3CVSS6.1AI score0.00825EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/19 12:0 a.m.8 views

Lexmark Printers Improper Access Control (CVE-2019-10058)

Various Lexmark products have Incorrect Access Control. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid505497; scriptversion"1.3";...

9.1CVSS7.3AI score0.01082EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/15 9:30 p.m.8 views

EUVD-2026-36784

Incorrect access control in the webhook management component of Project Firefly III v6.5.9 allows attackers to scan internal resources via a crafted POST request...

5.3AI score0.00312EPSS
Exploits0References2
EUVD
EUVD
added 2026/06/15 9:30 p.m.10 views

EUVD-2026-36773

Incorrect access control in the /form/webhooks/webhook endpoint of Deck9 Input v2.0.1 allows authenticated attackers to arbitrarily modify or delete another tenant's webhook via a crafted request...

5.2AI score0.00282EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/06/15 12:0 a.m.31 views

CVE-2026-50881

Incorrect access control in the impworks Bonsai v6.0 allows authenticated attackers with Editor privileges to escalate privileges to Administrator and execute unauthorized account, password, and configuration changes...

0.00248EPSS
Exploits0References1
Joomla! Vulnerable Extensions List
Joomla! Vulnerable Extensions List
added 2026/06/12 12:0 a.m.8 views

[20260711] - Core - Incorrect Access Control in com_privacy webservice endpoints

An improper access check allows unauthorized users to access comprivacy datasets...

8.8CVSS6AI score0.0024EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2026/06/05 7:40 p.m.10 views

CVE-2025-66105

Missing Authorization vulnerability in Magepeople inc. Bus Ticket Booking with Seat Reservation allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Bus Ticket Booking with Seat Reservation: from n/a before 5.6.8...

5.3CVSS5.4AI score0.00171EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/05 7:30 p.m.12 views

CVE-2026-42776

Missing Authorization vulnerability in WP Sunshine Sunshine Photo Cart allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Sunshine Photo Cart: from n/a through 3.6.7...

6.3CVSS5.4AI score0.00202EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/06/04 12:0 a.m.7 views

CVE-2026-35904

Incorrect access control in the web management interface of T3 Technology CPE models T625Pro v1.0.07, T6825G v1.0.03, and T7281 v1.0.03 allows unauthorized attackers to enable the Telnet service via sending a crafted request to a vulnerable CGI component...

5.5AI score0.00547EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2026/05/28 2:14 p.m.9 views

CVE-2026-33552

Northern.tech Mender Enterprise Server before 4.1.1 has Incorrect Access Control...

3.7CVSS5.8AI score0.00251EPSS
Exploits0References1
NVD
NVD
added 2026/05/27 8:16 p.m.11 views

CVE-2026-33552

Northern.tech Mender Enterprise Server before 4.1.1 has Incorrect Access Control...

3.7CVSS0.00251EPSS
Exploits0References2
NVD
NVD
added 2026/05/27 3:16 p.m.19 views

CVE-2026-49047

Missing Authorization vulnerability in DearHive DearFlip allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects DearFlip: from n/a through 2.4.27...

4.3CVSS0.00162EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/05/27 9:49 a.m.10 views

CVE-2026-42753

Missing Authorization vulnerability in WC Lovers WCFM Membership wc-multivendor-membership allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WCFM Membership: from n/a through = 2.11.10...

7.3CVSS5.8AI score0.00178EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/27 12:0 a.m.7 views

CVE-2026-33552

Northern.tech Mender Enterprise Server before 4.1.1 has Incorrect Access Control...

5.8AI score0.00251EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/05/27 12:0 a.m.11 views

PT-2026-44072

Name of the Vulnerable Software and Affected Versions Mender Enterprise Server versions prior to 4.1.1 Description Incorrect access control allows unauthorized users to perform actions they should not be permitted to execute. Recommendations Update to version 4.1.1 or later...

5.8AI score0.00251EPSS
Exploits0References5
Cvelist
Cvelist
added 2026/05/27 12:0 a.m.41 views

CVE-2026-33552

Northern.tech Mender Enterprise Server before 4.1.1 has Incorrect Access Control...

0.00251EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/27 12:0 a.m.9 views

CVE-2026-33552

Northern.tech Mender Enterprise Server before 4.1.1 has Incorrect Access Control...

5.8AI score0.00251EPSS
Exploits0References2
Rows per page
Query Builder