Vulnerabilities > Incorrect Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-03-10 | CVE-2022-24609 | Incorrect Authorization vulnerability in Luocms Project Luocms 2.0 Luocms v2.0 is affected by an incorrect access control vulnerability. | 9.8 |
| 2022-03-09 | CVE-2022-24748 | Incorrect Authorization vulnerability in Shopware Shopware is an open commerce platform based on the Symfony php Framework and the Vue javascript framework. | 7.5 |
| 2022-03-07 | CVE-2021-24824 | Incorrect Authorization vulnerability in Custom Content Shortcode Project Custom Content Shortcode The [field] shortcode included with the Custom Content Shortcode WordPress plugin before 4.0.1, allows authenticated users with a role as low as contributor, to access arbitrary post metadata. | 4.3 |
| 2022-03-02 | CVE-2021-3658 | Incorrect Authorization vulnerability in multiple products bluetoothd from bluez incorrectly saves adapters' Discoverable status when a device is powered down, and restores it when powered up. | 6.5 |
| 2022-03-02 | CVE-2022-24306 | Incorrect Authorization vulnerability in Zohocorp Manageengine Sharepoint Manager Plus Zoho ManageEngine SharePoint Manager Plus before 4329 allows account takeover because authorization is mishandled. | 9.8 |
| 2022-03-02 | CVE-2022-0577 | Incorrect Authorization vulnerability in multiple products Exposure of Sensitive Information to an Unauthorized Actor in GitHub repository scrapy/scrapy prior to 2.6.1. | 6.5 |
| 2022-02-24 | CVE-2019-25058 | Incorrect Authorization vulnerability in multiple products An issue was discovered in USBGuard before 1.1.0. | 7.8 |
| 2022-02-23 | CVE-2022-0727 | Incorrect Authorization vulnerability in Framasoft Peertube Improper Access Control in GitHub repository chocobozzz/peertube prior to 4.1.0. | 5.4 |
| 2022-02-18 | CVE-2020-25722 | Incorrect Authorization vulnerability in multiple products Multiple flaws were found in the way samba AD DC implemented access and conformance checking of stored data. | 8.8 |
| 2022-02-18 | CVE-2022-21141 | Incorrect Authorization vulnerability in Airspan products MMP: All versions prior to v1.0.3, PTP C-series: Device versions prior to v2.8.6.1, and PTMP C-series and A5x: Device versions prior to v2.5.4.1 does not perform proper authorization checks on multiple API functions. | 9.8 |