CVEs classified under CWE-346, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2026-42901 — CVSS 10.0 (critical): Origin validation error in Microsoft Entra ID allows an unauthorized attacker to elevate privileges over a network.
CVE-2026-6508 — CVSS 9.8 (critical): Origin Validation Error vulnerability in TUBITAK BILGEM Software Technologies Research Institute Liderahenk allows Accessing Functionality…
CVE-2026-2790 — CVSS 9.8 (critical): Same-origin policy bypass in the Networking: JAR component. This vulnerability was fixed in Firefox 148, Firefox ESR 140.8, Thunderbird…
CVE-2022-50925 — CVSS 9.8 (critical): Prowise Reflect version 1.0.9 contains a remote keystroke injection vulnerability that allows attackers to send keyboard events through an…
CVE-2025-30466 — CVSS 9.8 (critical): This issue was addressed through improved state management. This issue is fixed in Safari 18.4, iOS 18.4 and iPadOS 18.4, macOS Sequoia…
CVE-2024-8487 — CVSS 9.8 (critical): A Cross-Origin Resource Sharing (CORS) vulnerability exists in modelscope/agentscope version v0.0.4. The CORS configuration on the…
CVE-2024-10534 — CVSS 9.8 (critical): Origin Validation Error vulnerability in Dataprom Informatics Personnel Attendance Control Systems (PACS) / Access Control Security Systems…
CVE-2024-9392 — CVSS 9.8 (critical): A compromised content process could have allowed for the arbitrary loading of cross-origin pages. This vulnerability affects Firefox < 131…
CVE-2023-29711 — CVSS 9.8 (critical): An incorrect access control issue was discovered in Interlink PSG-5124 version 1.0.4, allows attackers to execute arbitrary code via…
CVE-2023-33443 — CVSS 9.8 (critical): Incorrect access control in the administrative functionalities of BES--6024PB-I50H1 VideoPlayTool v2.0.1.0 allow attackers to execute…
CVE-2023-29728 — CVSS 9.8 (critical): The Call Blocker application 6.6.3 for Android allows attackers to tamper with feature-related data, resulting in a severe elevation of…
CVE-2017-20146 — CVSS 9.8 (critical): Usage of the CORS handler may apply improper CORS headers, allowing the requester to explicitly control the value of the…
CVE-2020-26527 — CVSS 9.8 (critical): An issue was discovered in API/api/Version in Damstra Smart Asset 2020.7. Cross-origin resource sharing trusts random origins by accepting…
CVE-2019-4640 — CVSS 9.8 (critical): IBM Security Secret Server 10.7 processes patches, image backups and other updates without sufficiently verifying the origin and integrity…
CVE-2019-16517 — CVSS 9.8 (critical): An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. There is a CORS misconfiguration, which…
CVE-2019-15020 — CVSS 9.8 (critical): A security vulnerability exists in the Zingbox Inspector versions 1.293 and earlier, that could allow an attacker to supply an invalid…
CVE-2019-3980 — CVSS 9.8 (critical): The Solarwinds Dameware Mini Remote Client agent v12.1.0.89 supports smart card authentication which can allow a user to upload an…
CVE-2019-8069 — CVSS 9.8 (critical): Adobe Flash Player 32.0.0.238 and earlier versions, 32.0.0.207 and earlier versions have a Same Origin Method Execution vulnerability…
CVE-2018-5409 — CVSS 9.8 (critical): The PrinterLogic Print Management software, versions up to and including 18.3.1.96, updates and executes the code without sufficiently…
CVE-2018-15723 — CVSS 9.8 (critical): The Logitech Harmony Hub before version 4.15.206 is vulnerable to application level command injection via crafted HTTP request. An…
CVE-2018-5116 — CVSS 9.8 (critical): WebExtensions with the "ActiveTab" permission are able to access frames hosted within the active tab even if the frames are cross-origin…
CVE-2017-13274 — CVSS 9.8 (critical): In the getHost() function of UriTest.java, there is the possibility of incorrect web origin determination. This could lead to incorrect…
CVE-2003-0174 — CVSS 9.8 (critical): The LDAP name service (nsd) in IRIX 6.5.19 and earlier does not properly verify if the USERPASSWORD attribute has been provided by an LDAP…
CVE-2000-1218 — CVSS 9.8 (critical): The default configuration for the domain name resolver for Microsoft Windows 98, NT 4.0, 2000, and XP sets the QueryIpMatching parameter to…
CVE-2026-44985 — CVSS 9.6 (critical): Dozzle is a realtime log viewer for docker containers. Prior to 10.5.2, he WebSocket upgrader for the /exec and /attach endpoints uses…
CVE-2026-2611 — CVSS 9.6 (critical): In MLflow version 3.9.0, the MLflow Assistant feature introduced improper origin validation in its /ajax-api endpoints. This vulnerability…
CVE-2026-22794 — CVSS 9.6 (critical): Appsmith is a platform to build admin panels, internal tools, and dashboards. Prior to 1.93, the server uses the Origin value from the…
CVE-2025-59159 — CVSS 9.6 (critical): SillyTavern is a locally installed user interface that allows users to interact with text generation large language models, image…
CVE-2024-11045 — CVSS 9.6 (critical): A Cross-Site WebSocket Hijacking (CSWSH) vulnerability in automatic1111/stable-diffusion-webui version 1.10.0 allows an attacker to clone a…
CVE-2022-41924 — CVSS 9.6 (critical): A vulnerability identified in the Tailscale Windows client allows a malicious website to reconfigure the Tailscale daemon `tailscaled`…
CVE-2026-11624: The Model Context Protocol has a security warning advising servers to validate the "Origin" header on all incoming connections to prevent…
CVE-2024-25124 — CVSS 9.4 (critical): Fiber is a web framework written in go. Prior to version 2.52.1, the CORS middleware allows for insecure configurations that could…
CVE-2023-3654 — CVSS 9.4 (critical): cashIT! - serving solutions. Devices from "PoS/ Dienstleistung, Entwicklung & Vertrieb GmbH" to 03.A06rks 2023.02.37 are affected by a…
CVE-2026-8950 — CVSS 9.3 (critical): Same-origin policy bypass in the Networking: HTTP component. This vulnerability was fixed in Firefox 151, Firefox ESR 140.11, Thunderbird…
CVE-2025-3651: Improper Verification of Source of a Communication Channel in Work Desktop for Mac versions 10.8.1.46 and earlier allows attackers to…
CVE-2025-25306 — CVSS 9.3 (critical): Misskey is an open source, federated social media platform. The patch for CVE-2024-52591 did not sufficiently validate the relation between…
CVE-2026-54069: SiYuan is an open-source personal knowledge management system. Prior to 3.7.0, SiYuan Note's kernel HTTP server unconditionally trusts all…
CVE-2026-12304 — CVSS 9.1 (critical): Same-origin policy bypass in the Networking: Cookies component. This vulnerability was fixed in Firefox 152, Firefox ESR 140.12…
CVE-2026-23552 — CVSS 9.1 (critical): Cross-Realm Token Acceptance Bypass in KeycloakSecurityPolicy Apache Camel Keycloak component. The Camel-Keycloak KeycloakSecurityPolicy…
CVE-2025-63388 — CVSS 9.1 (critical): A Cross-Origin Resource Sharing (CORS) misconfiguration vulnerability exists in Dify v1.9.1 in the /console/api/system-features endpoint…
CVE-2025-63386 — CVSS 9.1 (critical): A Cross-Origin Resource Sharing (CORS) misconfiguration vulnerability exists in Dify v1.9.1 in the /console/api/setup endpoint. The…
CVE-2019-25211 — CVSS 9.1 (critical): parseWildcardRules in Gin-Gonic CORS middleware before 1.6.0 mishandles a wildcard at the end of an origin string, e.g…
CVE-2021-44935 — CVSS 9.1 (critical): glFusion CMS v1.7.9 is affected by an arbitrary user impersonation vulnerability in /public_html/comment.php. The attacker can complete the…
CVE-2021-39063 — CVSS 9.1 (critical): IBM Spectrum Protect Plus 10.1.0.0 through 10.1.8.x uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out…
CVE-2021-39185 — CVSS 9.1 (critical): Http4s is a minimal, idiomatic Scala interface for HTTP services. In http4s versions 0.21.26 and prior, 0.22.0 through 0.22.2, 0.23.0…
CVE-2021-26291 — CVSS 9.1 (critical): Apache Maven will follow repositories that are defined in a dependency’s Project Object Model (pom) which may be surprising to some…
CVE-2018-5400 — CVSS 9.1 (critical): The Auto-Maskin products utilize an undocumented custom protocol to set up Modbus communications with other devices without validating…