Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,330 vulnerabilities with CWE-862

CVE-2025-49916 HIGH

MultiVendorX <4.2.23 - Info Disclosure

CVE-2025-49913 MEDIUM

CoSchedule <3.4.0 - Info Disclosure

CVE-2025-49910 HIGH

WPGuppy <= 1.1.4 - Missing Authorization

CVE-2025-49907 MEDIUM

RealMag777 MDTF <= 1.3.3.9 - Privilege Escalation

CVE-2025-49906 MEDIUM

StellarWP WPComplete <= 2.9.5.3 - Info Disclosure

CVE-2025-49903 MEDIUM

bdthemes ZoloBlocks <= 2.3.11 - Privilege Escalation

CVE-2025-49899 MEDIUM

jjlemstra Whydonate <4.0.15 - Info Disclosure

CVE-2025-49377 MEDIUM

Themefic Hydra Booking <= 1.1.9 - Privilege Escalation

CVE-2025-49376 MEDIUM

DELUCKS SEO <= 2.5.9 - Missing Authorization

CVE-2025-48096 MEDIUM

FRESHFACE Custom CSS <= 1.4.0 - Missing Authorization

CVE-2025-30944 HIGH

Tablesome Table Premium <2.1.24 - Info Disclosure

CVE-2025-61755 LOW

Oracle GraalVM for JDK 17.0.16 and 21.0.8 - Unauthenticated Missing Authorization

CVE-2025-61751 HIGH

Oracle Financial Services Analytical Applications Infrastructure 8.0.7.9, 8.0.8.7, 8.1.2.5 - Missing Authorization

CVE-2025-9133 HIGH

Zyxel ATP-USG FLEX-20(W)-VPN - Info Disclosure

CVE-2025-11372 MEDIUM

LearnPress - WordPress LMS Plugin <4.2.9.2 - SQL Injection

CVE-2025-11742 MEDIUM

WPC Smart Wishlist - Info Disclosure

CVE-2025-11378 MEDIUM

ShortPixel Image Optimizer - Info Disclosure

CVE-2025-62642 MEDIUM

Restaurant Brands International Assistant < 2025-09-06 - Unauthenticated Account Creation via Signup API

CVE-2025-58075 HIGH

Mattermost 10.5.0-10.5.10 10.10.0-10.10.2 10.11.0-10.11.1 - Unauthenticated Team Join via RelayState Manipulation

CVE-2025-58073 HIGH

Mattermost 10.5.0-10.5.10 10.10.0-10.10.2 10.11.0-10.11.1 - Unauthenticated Team Join via OAuth State Manipulation

CVE-2025-41410 MEDIUM

Mattermost 10.5.0-10.5.10 10.10.0-10.10.2 10.11.0-10.11.2 - Missing Authorization via Slack Import Process

CVE-2025-41443 MEDIUM

Mattermost 10.5.0-10.5.12 and 10.11.0-10.11.2 - Missing Authorization via Channel IDs Endpoint

CVE-2025-10849 MEDIUM

Felan Framework <1.1.4 - Info Disclosure

CVE-2025-10706 HIGH

Classified Pro <1.0.14 - Privilege Escalation

CVE-2025-11701 MEDIUM

Zip Attachments plugin <1.7 - Info Disclosure

Previous Page 103 of 334 Next

Details

Vulnerabilities 8,330

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy