Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,332 vulnerabilities with CWE-862

CVE-2025-32210 MEDIUM

CM Registration and Invitation Codes <2.5.2 - Info Disclosure

CVE-2025-32208 MEDIUM

Hive Support <1.2.2 - Info Disclosure

CVE-2025-3417 HIGH

Embedder plugin <1.3.5 - Privilege Escalation

CVE-2025-2719 MEDIUM

Swatchly - WooCommerce Variation Swatches - Info Disclosure

CVE-2025-26901 MEDIUM

Brizy Pro <= 2.6.1 - Missing Authorization

CVE-2025-26888 MEDIUM

WooCommerce Multilingual & Multicurrency <5.3.8 - Info Disclosure

CVE-2025-32684 MEDIUM

RomanCode MapSVG Lite <8.5.32 - Info Disclosure

CVE-2025-32624 HIGH

Czater.pl - Live Chat <1.0.5 - CSRF

CVE-2025-31377 HIGH

Asaquzzaman mishu Woo Product Feed For Marketing Channels <1.9.0 - ...

CVE-2025-31042 MEDIUM

Sandwich Adsense <4.0.2 - Info Disclosure

CVE-2025-31012 MEDIUM

Phil Age Gate <3.5.4 - Info Disclosure

CVE-2025-31004 MEDIUM

Croover.inc Rich Table of Contents <1.4.0 - Info Disclosure

CVE-2025-32279 MEDIUM

Shahjada Live Forms <4.8.5 - Info Disclosure

CVE-2025-2876 MEDIUM

MelaPress Login Security < 2.1.1 - Unauthenticated Arbitrary User Deletion via Missing Capability Check

CVE-2025-2568 MEDIUM

Vayu Blocks 1.0.4-1.2.1 - Unauthenticated Data Access/Modification via Missing Capability Checks

CVE-2025-3437 MEDIUM

Motors Plugin <= 1.4.66 - Authenticated Data Modification via Missing Capability Check

CVE-2025-2807 HIGH

Motors Plugin <= 1.4.64 - Authenticated Arbitrary Plugin Installation

CVE-2025-30017 MEDIUM

SAP Solution Manager 7.1 - Auth Bypass

CVE-2025-27437 MEDIUM

SAP NetWeaver Application Server ABAP - Info Disclosure

CVE-2025-27435 MEDIUM

SAP Commerce Cloud HY_COM 2205 and COM_CLOUD 2211 - Unauthenticated Coupon Code Exposure via URL Parameters

CVE-2025-27428 HIGH

SAP Solution Manager - Path Traversal

CVE-2025-26657 MEDIUM

SAP KMC WPC >=7.50 - Unauthenticated Username Disclosure via Parameter Query

CVE-2025-31171 MEDIUM

HarmonyOS - Missing Authorization in Kernel File System Module

CVE-2025-2789 MEDIUM

MultiVendorX < 4.2.19 - Unauthenticated Table Rate Shipping Row Deletion

CVE-2025-1233 MEDIUM

Lafka Plugin <7.1.0 - Privilege Escalation

Previous Page 137 of 334 Next

Details

Vulnerabilities 8,332

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy