Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,331 vulnerabilities with CWE-862

CVE-2025-47480 MEDIUM

Iqonic Design Graphina <3.0.4 - Info Disclosure

CVE-2025-47472 MEDIUM

Music Player for WooCommerce <1.5.1 - Info Disclosure

CVE-2025-47471 MEDIUM

Envo Extra <= 1.9.9 - Missing Authorization

CVE-2025-47469 MEDIUM

slui Media Hygiene <4.0.0 - Info Disclosure

CVE-2025-47467 MEDIUM

GS Testimonial Slider <= 3.3.0 - Missing Authorization

CVE-2025-47465 MEDIUM

Blocksy <= 2.0.97 - Missing Authorization

CVE-2025-47457 MEDIUM

dgamoni LocateAndFilter <1.6.16 - Info Disclosure

CVE-2025-47450 MEDIUM

Mitchell Bennis Simple File List <6.1.13 - Info Disclosure

CVE-2025-3766 MEDIUM

Login Lockdown & Protection <2.11 - CSRF

CVE-2025-2821 MEDIUM

Search Exclude <2.4.9 - Info Disclosure

CVE-2025-0856 HIGH

PGS Core <= 5.8.0 - Unauthenticated Missing Authorization

CVE-2025-4327 MEDIUM

MRCMS 3.1.2 - Cross-Site Request Forgery

CVE-2025-46586 MEDIUM

HarmonyOS - Missing Authorization in Contacts Module

CVE-2025-4282 MEDIUM

SourceCodester/oretnom23 Stock Management System 1.0 - CSRF

CVE-2025-3927 CRITICAL

Digigram's PYKO-OUT AoIP - Info Disclosure

CVE-2025-1326 MEDIUM

Homey < 2.4.4 - Authenticated Arbitrary Reservation Deletion via homey_reservation_del()

CVE-2025-4179 HIGH

Flynax Bridge < 2.2.0 - Unauthenticated Privilege Escalation via registerUser() Function

CVE-2025-4177 MEDIUM

Flynax Bridge < 2.2.0 - Unauthenticated Arbitrary User Deletion via deleteUser() Function

CVE-2025-3746 CRITICAL

WordPress OTP-less one tap Sign in <2.0.59 - Privilege Escalation

CVE-2025-3952 HIGH

Projectopia - WordPress Project Management <5.1.16 - DoS

CVE-2025-1304 HIGH

NewsBlogger < 0.2.5.1 - Authenticated Arbitrary File Upload via newsblogger_install_and_activate_plugin()

CVE-2025-2816 HIGH

Page View Count 2.8.0-2.8.4 - Authenticated Denial of Service via Missing Capability Check

CVE-2025-46557 CRITICAL

XWiki <15.10.14, <16.4.6, <16.10.0-rc-1 - Privilege Escalation

CVE-2025-46554 MEDIUM

XWiki <14.10.22, <15.10.12, <16.4.3, <16.7.0 - Info Disclosure

CVE-2025-39413 MEDIUM

Simple Sitemap < 3.6.0 - Missing Authorization

Previous Page 132 of 334 Next

Details

Vulnerabilities 8,331

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy