Vulnerabilities > Authorization Bypass Through User-Controlled Key
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-30 | CVE-2022-36247 | Authorization Bypass Through User-Controlled Key vulnerability in Shopbeat Shop Beat Media Player 2.5.95 Shop Beat Solutions (Pty) LTD Shop Beat Media Player 2.5.95 up to 3.2.57 is vulnerable to IDOR via controlpanel.shopbeat.co.za. | 9.1 |
| 2023-05-30 | CVE-2023-2978 | Authorization Bypass Through User-Controlled Key vulnerability in Abstrium Pydio Cells 4.2.0 A vulnerability was found in Abstrium Pydio Cells 4.2.0. | 4.3 |
| 2023-05-24 | CVE-2023-2065 | Authorization Bypass Through User-Controlled Key vulnerability in Armoli Cargo Tracking System Authorization Bypass Through User-Controlled Key vulnerability in Armoli Technology Cargo Tracking System allows Authentication Abuse, Authentication Bypass.This issue affects Cargo Tracking System: before 3558f28 . | 8.8 |
| 2023-05-20 | CVE-2023-2276 | Authorization Bypass Through User-Controlled Key vulnerability in Wclovers Wcfm Membership The WCFM Membership – WooCommerce Memberships for Multivendor Marketplace plugin for WordPress is vulnerable to Insecure Direct Object References in versions up to, and including, 2.10.7. | 9.8 |
| 2023-05-16 | CVE-2023-2548 | Authorization Bypass Through User-Controlled Key vulnerability in Metagauss Registrationmagic The RegistrationMagic plugin for WordPress is vulnerable to Insecure Direct Object References in versions up to, and including, 5.2.0.5. | 7.2 |
| 2023-05-08 | CVE-2023-31182 | Authorization Bypass Through User-Controlled Key vulnerability in Easytor EasyTor Applications – Authorization Bypass - EasyTor Applications may allow authorization bypass via unspecified method. | 9.8 |
| 2023-05-04 | CVE-2023-30216 | Authorization Bypass Through User-Controlled Key vulnerability in Newbee-Mall Project Newbee-Mall 1.0/20191023 Insecure permissions in the updateUserInfo function of newbee-mall before commit 1f2c2dfy allows attackers to obtain user account information. | 5.4 |
| 2023-05-04 | CVE-2023-30550 | Authorization Bypass Through User-Controlled Key vulnerability in Metersphere MeterSphere is an open source continuous testing platform, covering functions such as test tracking, interface testing, UI testing, and performance testing. | 4.5 |
| 2023-04-15 | CVE-2018-17449 | Authorization Bypass Through User-Controlled Key vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. | 7.5 |
| 2023-04-15 | CVE-2018-17455 | Authorization Bypass Through User-Controlled Key vulnerability in Gitlab An issue was discovered in GitLab Enterprise Edition before 11.1.7, 11.2.x before 11.2.4, and 11.3.x before 11.3.1. | 7.5 |