Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-269 (特权管理不恰当) — Vulnerability Class 990

990 vulnerabilities classified as CWE-269 (特权管理不恰当). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-26703 ZTE GoldenDB 安全漏洞 — GoldenDB 4.3 Medium2025-03-11
CVE-2025-26704 ZTE GoldenDB 安全漏洞 — GoldenDB 6.4 Medium2025-03-11
CVE-2025-26705 ZTE GoldenDB 安全漏洞 — GoldenDB 5.3 Medium2025-03-11
CVE-2025-26706 ZTE GoldenDB 安全漏洞 — GoldenDB 5.4 Medium2025-03-11
CVE-2025-26707 ZTE GoldenDB 安全漏洞 — GoldenDB 5.3 Medium2025-03-11
CVE-2025-0177 Javo Core <= 3.0.0.080 - Unauthenticated Privilege Escalation in ajax_signup — Javo Core 9.8 Critical2025-03-08
CVE-2024-13835 Post Meta Data Manager <= 1.4.4 - Authentciated (Admin+) Multisite Privilege Escalation — Post Meta Data Manager 7.2 High2025-03-08
CVE-2024-11951 Homey Login Register <= 2.4.0 - Unauthenticated Privilege Escalation in homey_register — Homey Login Register 9.8 Critical2025-03-05
CVE-2024-12281 Homey <= 2.4.2 - Unauthenticated Privilege Escalation in homey_save_profile — Homey 9.8 Critical2025-03-05
CVE-2025-1424 Privilege Escalation Through SUID Binary and Developer Mode — InkPad Color 3 6.8 -2025-03-04
CVE-2025-1425 File Read Through Improper Sudo Privilege Management — InkPad Color 3 7.5 -2025-03-04
CVE-2024-24778 Apache StreamPipes: Resources Permission Escalation — Apache StreamPipes 6.5 -2025-03-03
CVE-2024-2297 Bricksbuilder <= 1.9.6.1 - Authenticated (Contributor+) Privilege Escalation via create_autosave — Bricks 7.1 High2025-02-27
CVE-2025-1295 Templines Elementor Helper Core <= 2.7 - Authenticated (Subscriber+) Privilege Escalation — Templines Elementor Helper Core 8.8 High2025-02-27
CVE-2024-30150 An unauthenticated privilege escalation vulnerability affects HCL MyCloud — MyCloud 5.3 Medium2025-02-25
CVE-2024-12284 Authenticated privilege escalation — Console 8.8 -2025-02-19
CVE-2025-0327 Schneider Electric EcoStruxure Process Expert 安全漏洞 — EcoStruxure Process Expert 7.8 High2025-02-13
CVE-2024-21966 AMD Ryzen Master 安全漏洞 — AMD Ryzen™ Master Utility 7.3 High2025-02-11
CVE-2025-25202 Ash Authentication has flawed token revocation checking logic in actions generated by `mix ash_authentication.install` — ash_authentication 8.2 -2025-02-11
CVE-2025-0180 WP Foodbakery <= 4.7 - Unauthenticated Privilege Escalation in foodbakery_registration_validation — WP Foodbakery 9.8 Critical2025-02-11
CVE-2025-24805 Local Privilege Escalation in MobSF — Mobile-Security-Framework-MobSF 6.1 -2025-02-05
CVE-2024-47770 Ability to view Agent list with no privilege access in wazuh-dashboard — wazuh 4.6 Medium2025-02-03
CVE-2024-13343 WooCommerce Customers Manager <= 31.3 - Missing Authorization to Authenticated (Subscriber+) Privilege Escalation — WooCommerce Customers Manager 8.8 High2025-02-01
CVE-2025-23007 SonicWALL NetExtender 安全漏洞 — NetExtender 8.8 -2025-01-30
CVE-2025-0834 Wondershare Dr.Fone Privilege Scalation Vulnerability — Dr.Fone 7.8 High2025-01-30
CVE-2021-3978 Improper Preservation of Permissions in github.com/cloudflare/cfrpki/cmd/octorpki — octorpki 7.5 High2025-01-29
CVE-2024-43446 Improper check of permissions in Generic Interface — OTRS 3.5 Low2025-01-27
CVE-2025-24353 Directus privilege escalation vulnerability using Share feature — directus 5.0 Medium2025-01-23
CVE-2025-0651 File symlink abuse might lead to deleting files belonging to SYSTEM user — WARP 7.1 -2025-01-22
CVE-2024-11218 Podman: buildah: container breakout by using --jobs=2 and a race condition when building a malicious containerfile 8.6 High2025-01-22

Vulnerabilities classified as CWE-269 (特权管理不恰当) represent 990 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.