https://www.csoonline.com/article/4112265/critical-vulnerability-in-ibm-api-connect-could-allow-authentication-bypass-2.html
Jan 5, 2026 - Rated 9.8 out of 10 in severity, the flaw could allow a remote attacker to gain unauthorized access to applications.
ibm api connectauthentication bypasscriticalvulnerabilitycould
https://www.exploit-db.com/exploits/52307?Cyber_Intelligence_Report
WordPress Digits Plugin 8.4.6.1 - Authentication Bypass via OTP Bruteforcing. CVE-2025-4094 . webapps exploit for Multiple platform
authentication bypasswordpressdigitspluginvia
https://securityaffairs.com/122003/hacking/zoho-zero-day-authentication-bypass.html
Zoho urges customers to fix an authentication bypass issue in its ManageEngine ADSelfService Plus that is actively exploited in the wild.
zero dayauthentication bypasszohowarnsflaw
https://thehackernews.com/2025/02/juniper-session-smart-routers.html?m=0
Juniper Networks patched CVE-2025-21589 (CVSS 9.8), a critical router flaw allowing remote takeovers.
junipersessionsmartroutersvulnerability
https://securityaffairs.com/71175/hacking/auth0-authentication-bypass.html
Auth0, one of the biggest identity-as-a-service platform is affected by a critical authentication bypass vulnerability that exposed enterprises to hack.
authentication bypassissueexposedenterpriseshack
https://www.proofpoint.com/uk/blog/cloud-security/new-vulnerabilities-bypass-multi-factor-authentication-microsoft-365
Proofpoint researchers recently discovered critical vulnerabilities in multi-factor authentication (MFA) implementation in cloud environments where WS-Trust is...
multi factor authenticationnewvulnerabilitiesbypassmicrosoft
https://portswigger.net/web-security/jwt/lab-jwt-authentication-bypass-via-jku-header-injection
This lab uses a JWT-based mechanism for handling sessions. The server supports the jku parameter in the JWT header. However, it fails to check whether the ...
authentication bypassweb securitylabjwtvia
https://thehackernews.com/2022/06/critical-flaw-in-cisco-secure-email-and.html
Cisco releases a patch to address a critical vulnerability in the Email Security Appliance (ESA) and Secure Email and Web Manager.
secure emailweb managercriticalflawcisco
https://www.fortra.com/security/advisories/product-security/fi-2024-001?_hsenc=p2ANqtz-8fuLNHZ0zK6OFX1YLlAbS1rt8Tr8qddIt9TH8xiDtVQMiCDA1kfEtBCM7Pee94vSxy18-_&utm_campaign=PANTHEON_STRIPPED&utm_medium=PANTHEON_STRIPPED&utm_source=PANTHEON_STRIPPED
authentication bypassgoanywheremftfortra
https://www.unite.ai/master-faces-that-can-bypass-over-40-of-facial-id-authentication-systems/
Researchers from Israel have developed a neural network capable of generating 'master' faces – facial images that are each capable of impersonating...
bypassfacialid
https://arcticwolf.com/resources/blog-uk/cve-2026-24858-forticloud-sso-authentication-bypass-vulnerability-exploited/
On 27 January 2026, Fortinet released an advisory detailing a critical authentication bypass vulnerability affecting FortiOS, FortiAnalyzer, FortiManager, and...
authentication bypasscveforticloudssovulnerability