Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,331 vulnerabilities with CWE-862

CVE-2025-21416 HIGH

Azure Virtual Desktop - Missing Authorization

CVE-2025-32973 CRITICAL

XWiki 15.9-15.10.12, 16.0.0-16.4.3, 16.5.0-16.8.0-rc-1 - Missing Authorization for Programming Rights

CVE-2025-3953 MEDIUM

WP Statistics < 14.13.3 - Authenticated Arbitrary Plugin Settings Update via optionUpdater Function

CVE-2025-46348 CRITICAL

YesWiki < 4.5.4 - Unauthenticated Backup Archive Creation and Download

CVE-2025-4095 MEDIUM

Registry Access Management - Info Disclosure

CVE-2025-4064 MEDIUM

ScriptAndTools Online-Travling-System 1.0 - Improper Access Control in /admin/viewenquiry.php

CVE-2025-3452 MEDIUM

SecuPress Free < 2.3.9 - Authenticated Arbitrary Plugin Installation via Missing Capability Check

CVE-2025-39367 MEDIUM

SeventhQueen Kleo <5.4.4 - Info Disclosure

CVE-2025-3997 MEDIUM

dazhouda lecms 3.0.3 - Cross-Site Request Forgery via Personal Information Page

CVE-2025-3981 MEDIUM

wowjoy Internet Doctor Workstation System 1.0 - Info Disclosure

CVE-2025-3980 MEDIUM

wowjoy Internet Doctor Workstation System 1.0 - Auth Bypass

CVE-2025-3979 MEDIUM

lecms 3.0.3 - Cross-Site Request Forgery in Password Change Handler

CVE-2025-3977 MEDIUM

iteachyou Dreamer CMS <4.1.3 - Info Disclosure

CVE-2025-3964 MEDIUM

withstars Books-Management-System 1.0 - CSRF

CVE-2025-3963 HIGH

withstars Books-Management-System 1.0 - Info Disclosure

CVE-2025-3960 HIGH

withstars Books-Management-System 1.0 - Info Disclosure

CVE-2025-3959 MEDIUM

withstars Books-Management-System 1.0 - CSRF

CVE-2025-3915 MEDIUM

Aeropage Sync for Airtable <3.2.0 - Info Disclosure

CVE-2025-3906 HIGH

Integração entre Eduzz e Woocommerce - Privilege Escalation

CVE-2025-43862 HIGH

Dify < 0.6.12 - Improper Access Control in APP Orchestration

CVE-2025-32045 MEDIUM

Moodle < 4.1.17 - Missing Authorization in Grade Reports

CVE-2025-3912 MEDIUM

WS Form LITE <= 1.10.35 - Unauthenticated Sensitive Data Exposure

CVE-2025-1279 HIGH

BM Content Builder plugin - Privilege Escalation

CVE-2025-46535 MEDIUM

AlphaEfficiencyTeam Custom Login and Registration <1.0.0 - RCE

CVE-2025-46519 MEDIUM

Media Library Downloader <1.3.1 - Info Disclosure

Previous Page 133 of 334 Next

Details

Vulnerabilities 8,331

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy