Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,331 vulnerabilities with CWE-862

CVE-2025-48784 HIGH

Soar Cloud HRD <7.3.2025.0408 - Info Disclosure

CVE-2025-5732 MEDIUM

Traffic Offense Reporting System 1.0 - Cross-Site Request Forgery

CVE-2025-5486 CRITICAL

WP Email Debug <1.1.0 - Privilege Escalation

CVE-2025-5018 HIGH

Hive Support <1.2.4 - Privilege Escalation

CVE-2025-1778 MEDIUM

Art Theme for WordPress <3.12.2.3 - Privilege Escalation

CVE-2025-1777 MEDIUM

BM Content Builder plugin - Code Injection

CVE-2025-48133 MEDIUM

Uncanny Automator <= 6.4.0.2 - Missing Authorization

CVE-2025-46258 MEDIUM

BdThemes Element Pack Pro <8.0.0 - Privilege Escalation

CVE-2025-5701 HIGH

HyperComments <1.2.2 - Privilege Escalation

CVE-2025-5521 MEDIUM

WuKongOpenSource WukongCRM 9.0 - CSRF

CVE-2025-48998 HIGH

DataEase < 2.10.6 - Authenticated Arbitrary File Read and Deserialization via JDBC Connection

CVE-2025-45854 CRITICAL

jehc-bpm < 2.0.1 - Unauthenticated Remote Code Execution via execParams

CVE-2025-4047 MEDIUM

WordPress Broken Link Checker <2.4.4 - Info Disclosure

CVE-2025-47585 MEDIUM

Mage people team Booking and Rental Manager <2.3.8 - Privilege Esca...

CVE-2025-5410 MEDIUM

Mist Community Edition < 4.7.2 - Cross-Site Request Forgery in session_start_response

CVE-2025-4597 MEDIUM

Woo Slider Pro <= 1.12 - Authenticated Arbitrary Post Deletion via woo_slide_pro_delete_draft_preview

CVE-2025-48334 MEDIUM

Woo Slider Pro < 1.12 - Unauthenticated Arbitrary Content Deletion

CVE-2025-4431 MEDIUM

Featured Image Plus <= 1.6.4 - Authenticated Data Modification via fip_save_attach_featured

CVE-2025-46823 HIGH

OpenMRS FHIR2 <2.5.0 - Privilege Escalation

CVE-2025-40673 MEDIUM

DinoRANK - Unauthenticated Missing Authorization via Invoice Endpoint

CVE-2025-5117 HIGH

Property plugin for WordPress <1.0.6 - Privilege Escalation

CVE-2025-2407 CRITICAL

Mobatime AMX MTAPI <1.5 - Auth Bypass

CVE-2025-4683 MEDIUM

WordPress <4.17.5 - Info Disclosure

CVE-2025-5185 MEDIUM

Summer Pearl Group Vacation Rental Management Platform <1.0.1 - CSRF

CVE-2025-40667 MEDIUM

TCMAN GIM v11 - Authenticated Missing Authorization via HTTP Response Code and Hidden Field Manipulation

Previous Page 127 of 334 Next

Details

Vulnerabilities 8,331

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy