Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,330 vulnerabilities with CWE-862

CVE-2025-48339 MEDIUM

activity-log.com Profiler <1.0.0 - Info Disclosure

CVE-2025-30959 MEDIUM

WPFactory Product XML Feed Manager <2.9.2 - Info Disclosure

CVE-2025-29000 HIGH

August Infotech Multi-language Responsive Contact Form <2.8 - Info ...

CVE-2025-28965 HIGH

Md Yeasin Ul Haider URL Shortener <3.0.7 - Info Disclosure

CVE-2025-54047 MEDIUM

QuanticaLabs Cost Calculator <7.4 - Info Disclosure

CVE-2025-54037 MEDIUM

News Kit Elementor Addons <1.3.4 - Info Disclosure

CVE-2025-54018 MEDIUM

CM Pop-Up banners <1.8.4 - Info Disclosure

CVE-2025-54011 MEDIUM

SMTP2GO <= 1.12.1 - Missing Authorization

CVE-2025-53997 MEDIUM

Houzez <= 4.0.4 - Missing Authorization

CVE-2025-53986 MEDIUM

ThemeIsle Hestia <3.2.10 - Info Disclosure

CVE-2025-48167 MEDIUM

alexvtn Chatbox Manager <1.2.5 - Info Disclosure

CVE-2025-48166 MEDIUM

Bill Minozzi Stop and Block bots plugin Anti bots <1.49 - Info Disc...

CVE-2025-48155 MEDIUM

enuiretechnology Residential Address Detection <2.5.9 - Info Disclo...

CVE-2025-48150 MEDIUM

Bill Minozzi Real Estate Property <4.48 - Info Disclosure

CVE-2025-6993 HIGH

Ultimate WP Mail 1.0.17-1.3.6 - Authenticated Privilege Escalation via get_email_log_details AJAX Handler

CVE-2025-6043 HIGH

Malcure Malware Scanner - #1 Toolset for WordPress <16.8 - Privileg...

CVE-2025-49829 MEDIUM

Conjur < 1.22.1 and Secrets Manager, Self-Hosted < 13.5.1 - Authenticated Resource Injection and Permission Bypass

CVE-2025-53959 HIGH

JetBrains YouTrack < 2024.3.85077 - Email Spoofing via Administrative API

CVE-2025-5394 CRITICAL

Alone - Charity Multipurpose Non-profit WordPress Theme <7.8.3 - RCE

CVE-2025-53825 CRITICAL

dokploy < 0.24.3 - Unauthenticated Remote Code Execution via Preview Deployment

CVE-2025-53640 MEDIUM

Indico 2.2-3.3.6 - Unauthenticated User Information Disclosure via User Detail Endpoint

CVE-2025-52954 HIGH

Juniper Junos OS Evolved Privilege Escalation via Internal VRF Packet Injection

CVE-2025-52950 CRITICAL

Juniper Security Director 24.4.1 - Unauthenticated Missing Authorization via Web Interface

CVE-2025-3780 MEDIUM

WCFM - WooCommerce <6.7.16 - Info Disclosure

CVE-2025-49723 HIGH

Windows StateRepository API - Missing Authorization

Previous Page 119 of 334 Next

Details

Vulnerabilities 8,330

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy