CWE-284
Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.
We have discovered 2,296 live websites that are affected by CWE-284.
CVEs
- Count - 5
CWE References
Countries
 United States | 1,341 websites |
 GB | 140 websites |
 Canada | 134 websites |
 Australia | 100 websites |
 Germany | 98 websites |
 Singapore | 75 websites |
 Netherlands | 59 websites |
 France | 45 websites |
 Mexico | 30 websites |
 Italy | 24 websites |
TLDs
| .com | 1,068 websites |
| .org | 373 websites |
| .co.uk | 81 websites |
| .com.au | 75 websites |
| .ca | 65 websites |
| .de | 58 websites |
| .nl | 47 websites |
| .edu | 46 websites |
| .net | 46 websites |
| .fr | 24 websites |
Newest CVEs
List of the most recent CVEs that are part of CWE-284| Discovered | CVE | Description | Websites |
|---|---|---|---|
| Feb, 2024 | CVE-2024-1632 | Incorrect access control in the Sitefinity backend | 1,931 |
| Jul, 2022 | CVE-2022-2225 | Zero Trust Secure Web Gateway policies bypass using WARP client subcommands | 180 |
| Jun, 2022 | CVE-2022-1658 | Jupiter Theme <= 6.10.1 - Authenticated Arbitrary Plugin Deletion | 169 |
| May, 2022 | CVE-2021-41834 | JFrog Artifactory prior to version 7.28.0 and 6.23.38, is vulnerable to Broken Access Control, the c... | 16 |
| May, 2022 | CVE-2021-45730 | JFrog Artifactory prior to 7.31.10, is vulnerable to Broken Access Control where a Project Admin is ... | 1 |
The most widespread CVEs
List of the most common CVEs that are part of CWE-284| Discovered | CVE | Description | Websites |
|---|---|---|---|
| Feb, 2024 | CVE-2024-1632 | Incorrect access control in the Sitefinity backend | 1,931 |
| Jul, 2022 | CVE-2022-2225 | Zero Trust Secure Web Gateway policies bypass using WARP client subcommands | 180 |
| Jun, 2022 | CVE-2022-1658 | Jupiter Theme <= 6.10.1 - Authenticated Arbitrary Plugin Deletion | 169 |
| May, 2022 | CVE-2021-41834 | JFrog Artifactory prior to version 7.28.0 and 6.23.38, is vulnerable to Broken Access Control, the c... | 16 |
| May, 2022 | CVE-2021-45730 | JFrog Artifactory prior to 7.31.10, is vulnerable to Broken Access Control where a Project Admin is ... | 1 |
Websites affected by CWE-284
Top websites that are affected by CWE-284. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| *********.net | GB | *,*** | |
| ***.*********.net | GB | *,*** | |
| ***.**************.com | United States | *,*** | |
| ***.************.org | United States | **,*** | |
| ***.*******.com | United States | **,*** | |
| ***.*******.***.gov | United States | **,*** | |
| ***.***.***.sg | Singapore | **,*** | |
| ***.****.org | United States | **,*** | |
| ***.***.sg | Singapore | **,*** | |
| ***.****.org | United States | **,*** |