Vulnerabilities > Incorrect Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-09-28 | CVE-2021-22535 | Incorrect Authorization vulnerability in Microfocus Netiq Directory and Resource Administrator Unauthorized information security disclosure vulnerability on Micro Focus Directory and Resource Administrator (DRA) product, affecting all DRA versions prior to 10.1 Patch 1. | 4.9 |
| 2021-09-27 | CVE-2021-24652 | Incorrect Authorization vulnerability in Wpxpo Postx - Gutenberg Blocks for Post Grid The PostX – Gutenberg Blocks for Post Grid WordPress plugin before 2.4.10 performs incorrect checks before allowing any logged in user to perform some ajax based requests, allowing any user to modify, delete or add ultp_options values. | 6.5 |
| 2021-09-24 | CVE-2021-40654 | Incorrect Authorization vulnerability in Dlink Dir-615 Firmware 17.00 An information disclosure issue exist in D-LINK-DIR-615 B2 2.01mt. | 6.5 |
| 2021-09-24 | CVE-2021-40655 | Incorrect Authorization vulnerability in Dlink Dir-605L Firmware 2.01Mt An informtion disclosure issue exists in D-LINK-DIR-605 B2 Firmware Version : 2.01MT. | 7.5 |
| 2021-09-24 | CVE-2021-36749 | Incorrect Authorization vulnerability in Apache Druid In the Druid ingestion system, the InputSource is used for reading data from a certain data source. | 6.5 |
| 2021-09-21 | CVE-2020-19551 | Incorrect Authorization vulnerability in Wuzhicms Blacklist bypass issue exists in WUZHI CMS up to and including 4.1.0 in common.func.php, which when uploaded can cause remote code executiong. | 8.8 |
| 2021-09-20 | CVE-2021-41082 | Incorrect Authorization vulnerability in Discourse Discourse is a platform for community discussion. | 7.5 |
| 2021-09-20 | CVE-2020-16630 | Incorrect Authorization vulnerability in TI products TI’s BLE stack caches and reuses the LTK’s property for a bonded mobile. | 6.8 |
| 2021-09-20 | CVE-2019-16651 | Incorrect Authorization vulnerability in Virginmedia Super HUB 3 Firmware An issue was discovered on Virgin Media Super Hub 3 (based on ARRIS TG2492) devices. | 5.3 |
| 2021-09-15 | CVE-2021-40639 | Incorrect Authorization vulnerability in Jflyfox Jfinal CMS 5.1.0 Improper access control in Jfinal CMS 5.1.0 allows attackers to access sensitive information via /classes/conf/db.properties&config=filemanager.config.js. | 7.5 |