Weaknesses of type CWE-566
8 resultsCVE-2014-0808CRITICALAuthorization bypass through user-controlled key issue exists in EC-CUBE 2.11.0 through 2.12.2 and EC-Orange systems deployed before June 29EPSS 2.2%CVE-2024-22261LOWSQL Injection in Harbor scan log APIEPSS 0.4%CVE-2025-9953CRITICALSQLi in Database Software's Databank Accreditation SoftwareEPSS 0.4%CVE-2025-30368LOWZulip allows the deletion of organization by administrators of a different organizationEPSS 0.3%CVE-2025-30369LOWZulip allows the deletion of Custom profile fields by administrators of a different organizationEPSS 0.2%CVE-2026-21886MEDIUMOpenCTI's GraphQL Mutations Allow Deletion of Unrelated EntitiesEPSS 0.2%CVE-2025-61781HIGHGraphQL IDOR allows authenticated user to delete workspace content of other usersEPSS 0.2%CVE-2025-56556LOWAn issue was discovered in Subrion CMS 4.2.1, allowing authenticated adminitrators or moderators with access to the built-in Run SQL Query fEPSS 0.2%