CWE-269

Medium likelihood

Improper Privilege Management

Parent: CWE-284 - Improper Access Control

The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

2,830 vulnerabilities with CWE-269
CVE-2023-51546 HIGH
WebToffee WooCommerce PDF Invoices <4.2.1 - Privilege Escalation
CVSS 7.2
CVE-2023-51483 CRITICAL
Glowlogix WP Frontend Profile <1.3.1 - Privilege Escalation
CVSS 9.8
CVE-2023-51481 CRITICAL
PowerfulWP Local Delivery Drivers - Privilege Escalation
CVSS 9.8
CVE-2023-51479 HIGH
Abdul Hakeem Build App Online <1.0.19 - Privilege Escalation
CVSS 8.8
CVE-2023-51476 CRITICAL
IOSS WP MLM Unilevel <4.0 - Privilege Escalation
CVSS 9.8
CVE-2023-51424 CRITICAL
Saleswonder Team WebinarIgnition <3.05.0 - Privilege Escalation
CVSS 9.8
CVE-2023-51398 HIGH
Brainstorm Force Ultimate Addons <1.35.14 - Privilege Escalation
CVSS 8.8
CVE-2023-51356 HIGH
Repute Infosystems ARMember <4.0.10 - Privilege Escalation
CVSS 8.8
CVE-2023-50890 HIGH
Brainstorm Force Ultimate Addons for Elementor <1.36.20 - Privilege...
CVSS 8.8
CVE-2023-48757 HIGH
Crocoblock JetEngine <3.2.4 - Privilege Escalation
CVSS 8.8
CVE-2023-48319 MEDIUM
Salon Booking System < 8.6 - Privilege Escalation
CVSS 6.8
CVE-2023-47868 HIGH
wpForo Forum <= 2.2.3 - Privilege Escalation
CVSS 7.3
CVE-2023-47782 HIGH
Thrive Theme Builder <3.24.0 - Privilege Escalation
CVSS 8.8
CVE-2023-47683 HIGH
miniOrange WordPress Social Login <7.6.6 - Privilege Escalation
CVSS 8.0
CVE-2023-47682 HIGH
weDevs WP User Frontend <3.6.5 - Privilege Escalation
CVSS 7.2
CVE-2023-46145 HIGH
Themify Themify Ultra - Privilege Escalation
CVSS 8.8
CVE-2023-41957 HIGH
Simple Membership < 4.3.4 - Unauthenticated Privilege Escalation
CVSS 8.6
CVE-2023-41955 HIGH
WPDeveloper Essential Addons for Elementor <= 5.8.8 - Privilege Escalation
CVSS 8.8
CVE-2023-41954 HIGH
ProfilePress < 4.13.1 - Unauthenticated Privilege Escalation
CVSS 8.6
CVE-2023-41665 HIGH
GiveWP <2.33.0 - Privilege Escalation
CVSS 8.8
CVE-2023-41243 HIGH
WPvivid Backup and Migration <= 0.9.90 - Privilege Escalation
CVSS 8.8
CVE-2023-37999 CRITICAL
HasThemes HT Mega <= 2.2.0 - Unauthenticated Privilege Escalation
CVSS 9.8
CVE-2023-37866 HIGH
Crocoblock JetFormBuilder <3.0.8 - Privilege Escalation
CVSS 7.2
CVE-2023-37389 HIGH
SAASPROJECT Booking Package <1.5.98 - Privilege Escalation
CVSS 8.8
CVE-2023-32244 CRITICAL
XTemos Woodmart Core <1.0.36 - Privilege Escalation
CVSS 9.8
Details
Vulnerabilities 2,830
Exploit Likelihood Medium
Links
MITRE CWE Entry Search this CWE With Exploits