Vulnerabilities > Improper Access Control

DATE CVE VULNERABILITY TITLE RISK
2023-05-12 CVE-2023-2670 Improper Access Control vulnerability in Lost and Found Information System Project Lost and Found Information System 1.0
A vulnerability was found in SourceCodester Lost and Found Information System 1.0.
network
low complexity
lost-and-found-information-system-project CWE-284
critical
9.8
2023-05-12 CVE-2023-2674 Improper Access Control vulnerability in Open-Emr Openemr
Improper Access Control in GitHub repository openemr/openemr prior to 7.0.1.
network
low complexity
open-emr CWE-284
4.3
2023-05-03 CVE-2023-28070 Improper Access Control vulnerability in Dell Alienware Command Center 5.4.35.0/5.5.37.0/5.5.40.0
Alienware Command Center Application, versions 5.5.43.0 and prior, contain an improper access control vulnerability.
local
low complexity
dell CWE-284
7.8
2023-04-30 CVE-2023-2429 Improper Access Control vulnerability in PHPmyfaq
Improper Access Control in GitHub repository thorsten/phpmyfaq prior to 3.1.13.
network
low complexity
phpmyfaq CWE-284
critical
9.8
2023-04-21 CVE-2023-2202 Improper Access Control vulnerability in Rosariosis
Improper Access Control in GitHub repository francoisjacquet/rosariosis prior to 10.9.3.
network
low complexity
rosariosis CWE-284
6.5
2023-04-20 CVE-2023-27350 Improper Access Control vulnerability in Papercut NG
This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 (Build 63914).
network
low complexity
papercut CWE-284
critical
9.8
2023-04-19 CVE-2023-29513 Improper Access Control vulnerability in Xwiki
XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it.
network
low complexity
xwiki CWE-284
4.3
2023-04-15 CVE-2023-2104 Improper Access Control vulnerability in Easyappointments
Improper Access Control in GitHub repository alextselegidis/easyappointments prior to 1.5.0.
network
low complexity
easyappointments CWE-284
5.4
2023-03-27 CVE-2023-22250 Adobe Commerce versions 2.4.4-p2 (and earlier) and 2.4.5-p1 (and earlier) are affected by an Improper Access Control vulnerability that could result in a Security feature bypass.
network
low complexity
CWE-284
5.3
2023-03-23 CVE-2023-26360 Improper Access Control vulnerability in Adobe Coldfusion 2018/2021
Adobe ColdFusion versions 2018 Update 15 (and earlier) and 2021 Update 5 (and earlier) are affected by an Improper Access Control vulnerability that could result in arbitrary code execution in the context of the current user.
network
low complexity
adobe CWE-284
8.6