Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,331 vulnerabilities with CWE-862

CVE-2025-24757 MEDIUM

Long Watch Studio MyRewards <5.4.13.1 - XSS

CVE-2025-24748 MEDIUM

LambertGroup All In One Slider Responsive <3.7.9 - SQL Injection

CVE-2025-6814 HIGH

Booking X < 1.1.2 - Unauthenticated Sensitive Data Exposure via export_now()

CVE-2025-5956 MEDIUM

WP Human Resource Management 2.0.0-2.2.17 - Authenticated Arbitrary User Deletion via ajax_delete_employee()

CVE-2025-5953 HIGH

WP Human Resource Management 2.0.0-2.2.17 - Authenticated Privilege Escalation

CVE-2025-52554 MEDIUM

n8n < 1.99.1 - Authenticated Workflow Execution Termination via /rest/executions/:id/stop Endpoint

CVE-2025-3702 MEDIUM

Melapress File Monitor <2.2.0 - Info Disclosure

CVE-2025-27461 HIGH

Endress MEAC300-FNADE4 Firmware - Unauthenticated Automatic Login

CVE-2025-53108 MEDIUM

HomeBox <0.20.1 - Privilege Escalation

CVE-2025-39362 MEDIUM

Mollie Mollie Payments for WooCommerce <8.0.2 - Info Disclosure

CVE-2025-5692 MEDIUM

Lead Form Data Collection to CRM < 3.1 - Authenticated Missing Authorization in AJAX Functions

CVE-2025-46259 MEDIUM

POSIMYTH Innovation The Plus Addons for Elementor Pro <6.3.7 - Info...

CVE-2025-6865 MEDIUM

daicuo < 1.3.13 - Cross-Site Request Forgery via /admin.php/addon/index

CVE-2025-6864 MEDIUM

SeaCMS < 13.2 - Cross-Site Request Forgery in /admin_type.php

CVE-2025-5304 CRITICAL

PT Project Notebooks 1.0.0-1.1.3 - Unauthenticated Privilege Escalation via wpnb_pto_new_users_add()

CVE-2025-53323 MEDIUM

danbriapps Pre-Publish Post Checklist <3.1 - Info Disclosure

CVE-2025-53318 MEDIUM

WPManiax WP DB Booster <1.0.1 - Info Disclosure

CVE-2025-53304 MEDIUM

Rohil Contact Form <1.1.4 - Info Disclosure

CVE-2025-53295 MEDIUM

iCount Payment Gateway <2.0.6 - Info Disclosure

CVE-2025-53293 MEDIUM

Morten Dalgaard Johansen Dashboard Widget Sidebar <1.2.3 - Info Dis...

CVE-2025-53288 MEDIUM

PlatiOnline Payments <6.3.2 - Info Disclosure

CVE-2025-53284 MEDIUM

Pankaj Sakaria CMS Blocks <1.1 - RCE

CVE-2025-53266 MEDIUM

EdwardBock Cron Logger <1.3.0 - RCE

CVE-2025-53255 MEDIUM

HurryTimer <2.13.1 - Info Disclosure

CVE-2025-53200 MEDIUM

QuantumCloud ChatBot <6.7.3 - Info Disclosure

Previous Page 121 of 334 Next

Details

Vulnerabilities 8,331

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy