Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,330 vulnerabilities with CWE-862

CVE-2025-41698 HIGH

Service <unknown> - Info Disclosure

CVE-2025-6205 CRITICAL KEV

DELMIA Apriso <2025 - Privilege Escalation

CVE-2025-8505 MEDIUM

wx-shop <de1b66331368695779cfc6e4d11a64caddf8716e - CSRF

CVE-2025-8488 MEDIUM

Ultimate Addons for Elementor <2.4.6 - Info Disclosure

CVE-2025-8152 MEDIUM

WP CTA - Call To Action Plugin <1.7.0 - Info Disclosure

CVE-2025-6754 HIGH

SEO Metrics <1.0.15 - Privilege Escalation

CVE-2025-8435 HIGH

Online Movie Streaming 1.0 - Missing Authorization in /admin-control.php ID Parameter

CVE-2025-8434 HIGH

Online Movie Streaming 1.0 - Missing Authorization in /admin.php ID Parameter

CVE-2025-8335 MEDIUM

code-projects Simple Car Rental System 1.0 - Cross-Site Request Forgery

CVE-2025-53113 LOW

GLPI 0.65-10.0.18 - Improper Access Control via External Links Feature

CVE-2025-53112 MEDIUM

GLPI 9.1.0-10.0.18 - Unauthenticated Unauthorized Resource Removal

CVE-2025-53111 MEDIUM

GLPI 0.80-10.0.18 - Unauthenticated Improper Access Control

CVE-2025-46811 CRITICAL

SUSE Linux Manager <5.0.27 - Privilege Escalation

CVE-2025-8322 HIGH

Ventem e-School - Missing Authorization for Administrator Functions

CVE-2025-7689 HIGH

Hydra Booking <1.1.18 - Privilege Escalation

CVE-2025-6730 MEDIUM

Bonanza - WooCommerce Free Gifts Lite <1.0.0 - Info Disclosure

CVE-2025-4370 MEDIUM

Brizy < 2.6.21 - Unauthenticated Limited File Upload via Missing Authorization

CVE-2025-8223 MEDIUM

jerryshensjf JPACookieShop - Cross-Site Request Forgery in AdminTypeCustController.java

CVE-2025-54378 HIGH

PSU Haxcms-nodejs < 11.0.14 - Missing Authorization

CVE-2025-5835 HIGH

Droip plugin - Privilege Escalation

CVE-2025-7822 MEDIUM

WP Wallcreeper <1.6.1 - Info Disclosure

CVE-2025-7695 HIGH

Dataverse Integration plugin for WordPress <2.81 - Privilege Escala...

CVE-2025-6441 CRITICAL

WebinarIgnition <4.03.31 - Auth Bypass

CVE-2025-6380 CRITICAL

ONLYOFFICE Docs <2.2.0 - Privilege Escalation

CVE-2025-1299 MEDIUM

GitLab 15.4-17.12, 18.0-18.0.4, 18.1-18.1.2, 18.2 - Unauthenticated Deployment Job Log Disclosure via Crafted Request

Previous Page 117 of 334 Next

Details

Vulnerabilities 8,330

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy