Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,333 vulnerabilities with CWE-862

CVE-2025-31757 MEDIUM

BinaryCarpenter Free Woocommerce Product Table View <1.78 - RCE

CVE-2025-31755 MEDIUM

pCloud Backup <1.0.1 - Info Disclosure

CVE-2025-31752 MEDIUM

Bulk Fields Editor <= 1.8.0 - Missing Authorization

CVE-2025-31732 MEDIUM

GB Gallery Slideshow <1.3 - Info Disclosure

CVE-2025-31408 MEDIUM

Zoho Flow <2.13.4 - Privilege Escalation

CVE-2025-31415 HIGH

YayCommerce YayExtra <1.5.2 - Info Disclosure

CVE-2025-30926 MEDIUM

KingAddons.com King Addons for Elementor - Info Disclosure

CVE-2025-30880 HIGH

JoomSky JS Help Desk <= 2.9.2 - Missing Authorization

CVE-2025-30797 HIGH

bigdrop.gr Greek Multi Tool <2.3.1 - Info Disclosure

CVE-2025-3037 MEDIUM

yzk2356911358 StudentServlet-JSP - CSRF

CVE-2025-31194 CRITICAL

macOS < 13.7.5, < 14.7.5, < 15.4 - Unauthenticated Privilege Escalation via Shortcut Execution

CVE-2025-31182 CRITICAL

iPadOS < 18.4 - Unauthorized File Deletion via Symlink Handling

CVE-2025-30461 CRITICAL

macOS Sequoia <15.4 - Info Disclosure

CVE-2025-24259 CRITICAL

macOS 13.0-13.7.4, 14.0-14.7.4, 15.0-15.3 - Missing Authorization for Safari Bookmarks Access

CVE-2025-24249 CRITICAL

macOS < 13.7.5, 14.7.5, 15.4 - Unauthorized File Path Existence Check

CVE-2025-24245 CRITICAL

macOS < 15.4 - Unauthorized Password Access via Verification Code Delay Bypass

CVE-2025-24181 CRITICAL

macOS < 13.7.5, < 14.7.5, < 15.4 - Unprotected User Data Exposure via Permissions Issue

CVE-2025-31691 CRITICAL

Drupal OAuth2 Server <2.1.0 - Info Disclosure

CVE-2025-31686 HIGH

Drupal Open Social <12.3.11-12.4.10 - Forceful Browsing

CVE-2025-31685 CRITICAL

Drupal Open Social <12.3.11-12.4.10 - Forceful Browsing

CVE-2025-31681 CRITICAL

Drupal Authenticator Login <2.0.6 - Forceful Browsing

CVE-2025-31678 HIGH

Drupal AI <1.0.3 - Forceful Browsing

CVE-2025-31618 MEDIUM

Jaap Jansma Connector to CiviCRM <1.0.9 - Privilege Escalation

CVE-2025-31611 MEDIUM

Shaharia Azam Auto Post After Image Upload <1.6 - RCE

CVE-2025-31609 MEDIUM

Arni Cinco WPCargo Track & - Info Disclosure

Previous Page 142 of 334 Next

Details

Vulnerabilities 8,333

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy