Weaknesses of type CWE-288
584 resultsCVE-2024-9893CRITICALNextend Social Login Pro <= 3.1.14 - Authentication Bypass via WordPress.com OAuth providerEPSS 0.6%CVE-2024-7007HIGHAuthentication Bypass Using an Alternate Path or Channel in Positron Broadcast Signal Processor TRA7005EPSS 0.6%CVE-2024-11925CRITICALWP JobSearch <= 2.6.7 - Authentication Bypass to Account Takeover and Privilege EscalationEPSS 0.6%CVE-2024-56013HIGHWordPress Wovax IDX plugin <= 1.2.2 - Account Takeover vulnerabilityEPSS 0.6%CVE-2024-54336HIGHWordPress Projectopia plugin <= 5.1.7 - Account Takeover vulnerabilityEPSS 0.6%CVE-2025-51381CRITICALAn authentication bypass vulnerability exists in KCM3100 Ver1.4.2 and earlier. If this vulnerability is exploited, an attacker may bypass thEPSS 0.6%CVE-2025-7742HIGHAuthentication Bypass in LG Innotek CameraEPSS 0.6%CVE-2026-35090CRITICALAuthentication Bypass in Slican telephone exchangesEPSS 0.6%CVE-2022-26870HIGHDell PowerStore versions 2.1.0.x contain an Authentication bypass vulnerability. A remote unauthenticated attacker could potentially exploitEPSS 0.6%CVE-2024-11178HIGHLogin With OTP <= 1.4.2 - Authentication Bypass via Weak OTPEPSS 0.6%CVE-2026-35422MEDIUMWindows TCP/IP Driver Security Feature Bypass VulnerabilityEPSS 0.6%CVE-2025-1061CRITICALNextend Social Login Pro <= 3.1.16 - Authentication Bypass via Apple OAuth providerEPSS 0.6%CVE-2023-20018HIGHA vulnerability in the web-based management interface of Cisco IP Phone 7800 and 8800 Series Phones could allow an unauthenticated, remote aEPSS 0.6%CVE-2023-50272HIGHA potential security vulnerability has been identified in HPE Integrated Lights-Out 5 (iLO 5) and Integrated Lights-Out 6 (iLO 6). The vulneEPSS 0.6%CVE-2024-7503CRITICALWooCommerce - Social Login <= 2.7.5 - Authentication Bypass to Account TakeoverEPSS 0.6%CVE-2025-31095CRITICALWordPress Material Dashboard plugin <= 1.4.5 - Privilege Escalation VulnerabilityEPSS 0.6%CVE-2024-9861HIGHMiniorange OTP Verification with Firebase <= 3.6.0 - Authentication BypassEPSS 0.6%CVE-2024-2012CRITICALvulnerability exists in the FOXMAN-UN/UNEM server / API Gateway that if exploited an attacker could use to allow unintended commands or
codEPSS 0.6%CVE-2024-6684CRITICALAuthentication Bypass in GST Electronics' inohom Nova Panel N7EPSS 0.6%CVE-2024-47406CRITICALSharp and Toshiba Tec MFPs improperly process HTTP authentication requests, resulting in an authentication bypass vulnerability.EPSS 0.6%