Vulnerabilities > Incorrect Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-30 | CVE-2021-29642 | Incorrect Authorization vulnerability in Gistpad Project Gistpad GistPad before 0.2.7 allows a crafted workspace folder to change the URL for the Gist API, which leads to leakage of GitHub access tokens. | 5.3 |
| 2021-03-29 | CVE-2021-28936 | Incorrect Authorization vulnerability in Acexy Wireless-N Wifi Repeater Firmware 28.08.06.1 The Acexy Wireless-N WiFi Repeater REV 1.0 (28.08.06.1) Web management administrator password can be changed by sending a specially crafted HTTP GET request. | 7.5 |
| 2021-03-26 | CVE-2021-21411 | Incorrect Authorization vulnerability in Oauth2 Proxy Project Oauth2 Proxy 7.0.0/7.0.1 OAuth2-Proxy is an open source reverse proxy that provides authentication with Google, Github or other providers. | 5.5 |
| 2021-03-26 | CVE-2021-21389 | Incorrect Authorization vulnerability in Buddypress BuddyPress is an open source WordPress plugin to build a community site. | 8.8 |
| 2021-03-25 | CVE-2021-27195 | Incorrect Authorization vulnerability in Netop Vision PRO Improper Authorization vulnerability in Netop Vision Pro up to and including to 9.7.1 allows an attacker to replay network traffic. | 5.9 |
| 2021-03-24 | CVE-2021-22186 | Incorrect Authorization vulnerability in Gitlab An authorization issue in GitLab CE/EE version 9.4 and up allowed a group maintainer to modify group CI/CD variables which should be restricted to group owners | 4.9 |
| 2021-03-24 | CVE-2021-22176 | Incorrect Authorization vulnerability in Gitlab An issue has been discovered in GitLab affecting all versions starting with 3.0.1. | 4.3 |
| 2021-03-23 | CVE-2021-28824 | Incorrect Authorization vulnerability in Tibco Activespaces The Windows Installation component of TIBCO Software Inc.'s TIBCO ActiveSpaces - Community Edition, TIBCO ActiveSpaces - Developer Edition, and TIBCO ActiveSpaces - Enterprise Edition contains a vulnerability that theoretically allows a low privileged attacker with local access on some versions of the Windows operating system to insert malicious software. | 8.8 |
| 2021-03-23 | CVE-2021-28823 | Incorrect Authorization vulnerability in Tibco Eftl The Windows Installation component of TIBCO Software Inc.'s TIBCO eFTL - Community Edition, TIBCO eFTL - Developer Edition, and TIBCO eFTL - Enterprise Edition contains a vulnerability that theoretically allows a low privileged attacker with local access on some versions of the Windows operating system to insert malicious software. | 7.8 |
| 2021-03-23 | CVE-2021-28821 | Incorrect Authorization vulnerability in Tibco Enterprise Message Service 8.5.1 The Windows Installation component of TIBCO Software Inc.'s TIBCO Enterprise Message Service, TIBCO Enterprise Message Service - Community Edition, and TIBCO Enterprise Message Service - Developer Edition contains a vulnerability that theoretically allows a low privileged attacker with local access on some versions of the Windows operating system to insert malicious software. | 7.8 |