Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-266 (特权授予不正确) — Vulnerability Class 381

381 vulnerabilities classified as CWE-266 (特权授予不正确). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-56040 WordPress VibeBP plugin <= 1.9.9.4.1 - Unauthenticated Privilege Escalation vulnerability — VibeBP 9.8 Critical2024-12-31
CVE-2024-56071 WordPress Simple Dashboard plugin <= 2.0 - Privilege Escalation vulnerability — Simple Dashboard 9.8 Critical2024-12-31
CVE-2024-56205 WordPress AI Magic – SEO Content Generator & Article Writer plugin <= 1.0.4 - Privilege Escalation vulnerability — AI Magic 9.8 Critical2024-12-31
CVE-2024-56220 WordPress SSL Wireless SMS Notification plugin <= 3.6.0 - Privilege Escalation vulnerability — SSL Wireless SMS Notification 9.8 Critical2024-12-31
CVE-2024-50701 TeamPass 安全漏洞 — TeamPass 4.3 Medium2024-12-30
CVE-2024-50702 TeamPass 安全漏洞 — TeamPass 5.4 Medium2024-12-30
CVE-2024-12678 Nomad Allocations Vulnerable To Privilege Escalation Within A Namespace Using Unredacted Workload Identity Tokens — Nomad 6.5 Medium2024-12-20
CVE-2024-54383 WordPress WooCommerce - PDF Vouchers plugin < 4.9.9 - Broken Authentication vulnerability — WooCommerce PDF Vouchers 9.8 Critical2024-12-18
CVE-2024-9779 Open-cluster-management-io/ocm: cluster-manager permissions may allow a worker node to obtain service account tokens 7.5 High2024-12-17
CVE-2024-54229 WordPress SV100 Companion plugin <= 2.0.02 - Privilege Escalation vulnerability — SV100 Companion 9.8 Critical2024-12-16
CVE-2024-54363 WordPress Wp NssUser Register plugin <= 1.0.0 - Privilege Escalation vulnerability — Wp NssUser Register 9.8 Critical2024-12-16
CVE-2024-54365 WordPress KH Easy User Settings plugin <= 1.0.0 - Privilege Escalation vulnerability — KH Easy User Settings 8.8 High2024-12-16
CVE-2024-54293 WordPress CE21 Suite plugin <= 2.2.0 - Privilege Escalation vulnerability — CE21 Suite 9.8 Critical2024-12-13
CVE-2023-26280 IBM Jazz Foundation improper access control — Jazz Foundation 5.3 Medium2024-11-25
CVE-2024-9479 upKeeper 安全漏洞 — upKeeper Instant Privilege Access 8.8AIHighAI2024-11-20
CVE-2024-9478 upKeeper 安全漏洞 — upKeeper Instant Privilege Access 8.8AIHighAI2024-11-20
CVE-2024-52442 WordPress UserPlus plugin <= 2.0 - Privilege Escalation vulnerability — UserPlus 9.8 Critical2024-11-20
CVE-2024-10978 PostgreSQL SET ROLE, SET SESSION AUTHORIZATION reset to wrong user ID — PostgreSQL 4.2 Medium2024-11-14
CVE-2024-9476 Privilege escalation vulnerability for Organizations in Grafana — Grafana OSS and Enterprise 8.8AIHighAI2024-11-13
CVE-2024-29119 Siemens Spectrum Power 安全漏洞 — Spectrum Power 7 7.8 High2024-11-12
CVE-2024-47595 Local Privilege Escalation in SAP Host Agent — SAP Host Agent 6.3 Medium2024-11-12
CVE-2024-45759 Dell PowerProtect Data Domain 安全漏洞 — PowerProtect DD 6.8 Medium2024-11-08
CVE-2024-50504 WordPress Bulk Change Role plugin <= 1.1 - Privilege Escalation vulnerability — Bulk Change Role 8.8 High2024-10-30
CVE-2024-50506 WordPress Marketing Automation by AZEXO plugin <= 1.27.80 - Privilege Escalation vulnerability — Marketing Automation by AZEXO 8.8 High2024-10-30
CVE-2024-50550 WordPress LiteSpeed Cache plugin <= 6.5.1 - Privilege Escalation vulnerability — LiteSpeed Cache 8.1 High2024-10-29
CVE-2024-50481 WordPress Bstone Demo Importer plugin <= 1.0.1 - Privilege Escalation vulnerability — Bstone Demo Importer 8.8 High2024-10-29
CVE-2024-50485 WordPress Exam Matrix plugin <= 1.5 - Privilege Escalation vulnerability — Exam Matrix 9.8 Critical2024-10-29
CVE-2024-47904 Siemens InterMesh 7177和Siemens InterMesh 7707 安全漏洞 — InterMesh 7177 Hybrid 2.0 Subscriber 7.8 High2024-10-23
CVE-2024-49608 WordPress GERRYWORKS Post by Mail plugin <= 1.0 - Privilege Escalation vulnerability — GERRYWORKS Post by Mail 8.8 High2024-10-20
CVE-2024-49217 WordPress Adding drop down roles in registration plugin <= 1.1 - Privilege Escalation vulnerability — Adding drop down roles in registration 8.8AIHighAI2024-10-17

Vulnerabilities classified as CWE-266 (特权授予不正确) represent 381 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.