CWE-284

Improper Access Control to Remote Code Execution in GitHub repository webmin/webmin prior to 1.990.

The flo-launch WordPress plugin before 2.4.1 injects code into wp-config.php when creating a cloned site, allowing any attacker to initiate a new site install by setting the flo_custom_table_prefix cookie to an arbitrary value.

Improper Access Control in Packagist librenms/librenms prior to 22.2.0.

Improper Access Control in GitHub repository janeczku/calibre-web prior to 0.6.16.

Improper Access Control in Pypi calibreweb prior to 0.6.16.

peertube is vulnerable to Improper Access Control