CWE-566

5 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →

CVEs classified under CWE-566page 1 of 1

CVE-2024-22261LOWCVSS 2.7EG 2.7
2024-06-11
SQL-Injection in Harbor allows priviledge users to leak the task IDs
CVE-2025-30368LOWCVSS 2.7EG 2.7
2025-03-31
Zulip is an open-source team collaboration tool. The API for deleting an organization export is supposed to be restricted to organization administrators, but its handler failed to check that the field belongs to the same organization as th…
CVE-2025-30369LOWCVSS 2.7EG 2.7
2025-03-31
Zulip is an open-source team collaboration tool. The API for deleting an organization custom profile field is supposed to be restricted to organization administrators, but its handler failed to check that the field belongs to the same orga…
CVE-2025-56556LOWCVSS 3.8EG 6.5
2025-09-11
An issue was discovered in Subrion CMS 4.2.1, allowing authenticated adminitrators or moderators with access to the built-in Run SQL Query feature under the SQL Tool admin panel - to gain escalated privileges in the context of the SQL quer…
CVE-2025-61781HIGHCVSS 7.1EG 7.1
2026-01-05
OpenCTI is an open source platform for managing cyber threat intelligence knowledge and observables. Prior to version 6.8.1, the GraphQL mutation "WorkspacePopoverDeletionMutation" allows users to delete workspace-related objects such as d…

Map vulnerabilities like CWE-566 to your infrastructure

EchelonGraph correlates every CVE — across CWE-566 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.

Start Free Scan →