Weaknesses of type CWE-863
2,089 resultsCVE-2022-42978HIGHIn the Netic User Export add-on before 1.3.5 for Atlassian Confluence, authorization is mishandled. An unauthenticated attacker could accessEPSS 0.8%CVE-2023-0328—WPCode < 2.0.7 - Contributor+ WPCode Library Auth Key Update/DeletionEPSS 0.8%CVE-2021-3499—A vulnerability was found in OVN Kubernetes in versions up to and including 0.3.0 where the Egress Firewall does not reliably apply firewallEPSS 0.8%CVE-2021-24783—Post Expirator < 2.6.0 - Contributor+ Arbitrary Post Schedule DeletionEPSS 0.8%CVE-2023-46241CRITICALPotential account take over due to unverified emails from Microsoft Identity Platform EPSS 0.8%CVE-2023-43961HIGHAn issue in Dromara SaToken version 1.3.50RC and before when using Spring dynamic controllers, a specially crafted request may cause an authEPSS 0.8%CVE-2024-38868HIGHIncorrect AuthorizationEPSS 0.8%CVE-2022-43438HIGHHWA JIUH DIGITAL TECHNOLOGY LTD. EasyTest - Incorrect AuthorizationEPSS 0.8%CVE-2022-24841MEDIUMImproper Authorization in github.com/fleetdm/fleetEPSS 0.8%CVE-2023-46244CRITICALPrivilege escalation in Xwiki platformEPSS 0.8%CVE-2022-0825—Amelia < 1.0.49 - Customer+ Arbitrary Appointments Status UpdateEPSS 0.8%CVE-2016-9575—Ipa versions 4.2.x, 4.3.x before 4.3.3 and 4.4.x before 4.4.3 did not properly check the user's permissions while modifying certificate profEPSS 0.8%CVE-2023-46753—An issue was discovered in FRRouting FRR through 9.0.1. A crash can occur for a crafted BGP UPDATE message without mandatory attributes, e.gEPSS 0.8%CVE-2021-24733—WP Post Page Clone < 1.2 - Unauthorised Post AccessEPSS 0.8%CVE-2025-10611CRITICALPotential Broken Access Control in Multiple WSO2 Products via System REST APIsEPSS 0.8%CVE-2020-7499—A CWE-863: Incorrect Authorization vulnerability exists in U.motion Servers and Touch Panels (affected versions listed in the security notifEPSS 0.8%CVE-2021-24819—Page/Post Content Shortcode <= 1.0 - Contributor+ Arbitrary Posts/Pages AccessEPSS 0.8%CVE-2021-24824—Custom Content Shortcode < 4.0.1 - Unauthorised Arbitrary Post Metadata AccessEPSS 0.8%CVE-2023-32069CRITICALXWiki Platform privilege escalation (PR)/RCE from account through class sheetEPSS 0.8%CVE-2020-36710MEDIUMWPS Hide Login <= 1.5.4.2 - Hidden Login Page Location DisclosureEPSS 0.8%