CWE-653
52 active CVEs classified under this weakness category. Sourced from NVD, GHSA, and vendor advisories. Full definition on MITRE →
CVEs classified under CWE-653page 2 of 2
- CVE-2026-5599HIGHCVSS 7.3EG 0.02026-04-05
A user with API access and "manage users" permission in any venueless world is able to trigger deletion of user accounts in other worlds.
- CVE-2026-5600MEDIUMCVSS 4.3EG 4.32026-04-08
A new API endpoint introduced in pretix 2025 that is supposed to return all check-in events of a specific event in fact returns all check-in events belonging to the respective organizer. This allows an API consumer to access information…
Map vulnerabilities like CWE-653 to your infrastructure
EchelonGraph correlates every CVE — across CWE-653 and 150+ other weakness categories — against the assets you actually run. See blast radius, fix versions, and remediation steps in one graph.
Start Free Scan →