Vulnerabilities > Authorization Bypass Through User-Controlled Key
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-02-08 | CVE-2022-21713 | Authorization Bypass Through User-Controlled Key vulnerability in multiple products Grafana is an open-source platform for monitoring and observability. | 4.3 |
2022-02-07 | CVE-2021-25096 | Authorization Bypass Through User-Controlled Key vulnerability in Ip2Location Country Blocker The IP2Location Country Blocker WordPress plugin before 2.26.5 bans can be bypassed by using a specific parameter in the URL | 6.4 |
2022-02-06 | CVE-2022-22832 | Authorization Bypass Through User-Controlled Key vulnerability in Servisnet Tessa 0.0.2 An issue was discovered in Servisnet Tessa 0.0.2. | 9.8 |
2022-01-28 | CVE-2021-41608 | Authorization Bypass Through User-Controlled Key vulnerability in Classapps Selectsurvey.Net A file disclosure vulnerability in the UploadedImageDisplay.aspx endpoint of SelectSurvey.NET before 5.052.000 allows a remote, unauthenticated attacker to retrieve survey user submitted data by modifying the value of the ID parameter in sequential order beginning from 1. | 5.0 |
2022-01-27 | CVE-2022-22828 | Authorization Bypass Through User-Controlled Key vulnerability in Synametrics Synaman An insecure direct object reference for the file-download URL in Synametrics SynaMan before 5.0 allows a remote attacker to access unshared files via a modified base64-encoded filename string. | 5.0 |
2022-01-24 | CVE-2022-23856 | Authorization Bypass Through User-Controlled Key vulnerability in Saviynt Enterprise Identity Cloud An issue was discovered in Saviynt Enterprise Identity Cloud (EIC) 5.5 SP2.x. | 5.3 |
2022-01-19 | CVE-2022-0266 | Authorization Bypass Through User-Controlled Key vulnerability in Livehelperchat Live Helper Chat Authorization Bypass Through User-Controlled Key in Packagist remdex/livehelperchat prior to 3.92v. | 6.0 |
2022-01-18 | CVE-2021-44836 | Authorization Bypass Through User-Controlled Key vulnerability in Deltarm Delta RM 1.2 An issue was discovered in Delta RM 1.2. | 4.0 |
2022-01-14 | CVE-2021-3965 | Authorization Bypass Through User-Controlled Key vulnerability in HP products Certain HP DesignJet products may be vulnerable to unauthenticated HTTP requests which allow viewing and downloading of print job previews. | 5.0 |
2022-01-12 | CVE-2021-3852 | Authorization Bypass Through User-Controlled Key vulnerability in Weseek Growi growi is vulnerable to Authorization Bypass Through User-Controlled Key | 5.0 |