Weaknesses of type CWE-863

2,095 results
CVE-2025-0937HIGHNomad Vulnerable To Event Stream Namespace ACL Policy Bypass Through Wildcard NamespaceEPSS 0.4%CVE-2023-34958MEDIUMIncorrect access control in Chamilo 1.11.* up to 1.11.18 allows a student subscribed to a given course to download documents belonging to anEPSS 0.4%CVE-2026-34646HIGHAdobe Commerce | Incorrect Authorization (CWE-863)EPSS 0.4%CVE-2024-39905MEDIUMRed-DiscordBot vulnerable to Incorrect Authorization in commands APIEPSS 0.4%CVE-2024-8116MEDIUMIncorrect Authorization in GitLabEPSS 0.4%CVE-2018-25146HIGHMicrohard Systems IPn4G 1.1.0 Service Control Denial of ServiceEPSS 0.4%CVE-2025-48935MEDIUMDeno has --allow-read / --allow-write permission bypass in `node:sqlite`EPSS 0.4%CVE-2025-2003HIGHIncorrect authorization in PAM vaults in Devolutions Server 2024.3.12 and earlier allows an authenticated user to bypass the 'add in root' pEPSS 0.4%CVE-2025-13813MEDIUMmoxi159753 Mogu Blog v2 Storage Management Endpoint storage authorizationEPSS 0.4%CVE-2025-31481HIGHGraphQL query operations security can be bypassedEPSS 0.4%CVE-2026-27604CRITICALFOSSBilling: Improper API Role Validation (system) Enables Unauthenticated Access to Privileged Admin FunctionsEPSS 0.4%CVE-2023-48227MEDIUMUmbraco CMS Backoffice User can bypass "Publish" restrictionEPSS 0.4%CVE-2024-6086MEDIUMImproper Access Control in lunary-ai/lunaryEPSS 0.4%CVE-2026-41303HIGHOpenClaw < 2026.3.28 - Authorization Bypass in Discord Text Approval CommandsEPSS 0.4%CVE-2025-48474MEDIUMFreeScout Vulnerable to Insufficient AuthorizationEPSS 0.4%CVE-2022-31178MEDIUMImproper Authorization in eLabFTWEPSS 0.4%CVE-2026-45672HIGHOpen WebUI: Jupyter code execution works despite `ENABLE_CODE_EXECUTION=false` — feature gate bypassedEPSS 0.4%CVE-2024-37300HIGHGlobus `identity_provider` restriction ignored when used with `allow_all` in JupyterHub 5.0EPSS 0.4%CVE-2023-29240MEDIUMBIG-IQ iControl REST VulnerabilityEPSS 0.4%CVE-2023-34161HIGHnappropriate authorization vulnerability in the SettingsProvider module.Successful exploitation of this vulnerability may cause features to EPSS 0.4%