Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,343 vulnerabilities with CWE-862

CVE-2025-1528 MEDIUM

Search & Filter Pro <2.5.19 - Info Disclosure

CVE-2025-1285 MEDIUM

Resido - Real Estate WordPress Theme <3.6 - Auth Bypass

CVE-2025-0955 MEDIUM

VidoRev Extensions <2.9.9.9.9.5 - Auth Bypass

CVE-2025-27103 MEDIUM

dataease < 2.10.6 - Authenticated Arbitrary File Read and Deserialization via JDBC Connection

CVE-2025-24974 MEDIUM

DataEase < 2.10.6 - Authenticated Arbitrary File Read and Deserialization via JDBC Connection

CVE-2025-2104 MEDIUM

Pagelayer - WordPress <1.9.8 - Privilege Escalation

CVE-2025-1508 MEDIUM

WP Crowdfunding <= 2.1.14 - Authenticated Unauthorized Data Access via download_data Action

CVE-2025-28938 MEDIUM

Bjoern WP Performance Pack <2.5.3 - Info Disclosure

CVE-2025-28920 MEDIUM

Jogesh Responsive Google Map <3.1.5 - RCE

CVE-2025-28872 MEDIUM

Block Spam By Math Reloaded <= 2.2.4 - Missing Authorization

CVE-2025-27432 LOW

SAP Electronic Invoicing for Brazil - Privilege Escalation

CVE-2025-26661 HIGH

SAP NetWeaver - Privilege Escalation

CVE-2025-26656 MEDIUM

SAP S/4HANA Manage Purchasing Info Records - Authenticated Privilege Escalation via OData Service

CVE-2025-26655 LOW

SAP Just In Time - Authenticated Privilege Escalation via Missing Authorization

CVE-2025-25244 MEDIUM

SAP Business Warehouse - Privilege Escalation

CVE-2025-23188 MEDIUM

SAP S/4HANA (RBD) - Authenticated Missing Authorization Check in IBS Module

CVE-2025-1325 MEDIUM

WP-Recall < 16.26.10 - Authenticated Arbitrary Shortcode Execution via rcl_preview_post AJAX Endpoint

CVE-2025-1504 MEDIUM

Post Lockdown < 4.0.2 - Authenticated Information Exposure via pl_autocomplete AJAX Action

CVE-2025-1481 MEDIUM

Shortcode Cleaner Lite <= 1.0.9 - Authenticated Unauthorized Data Access via download_backup Function

CVE-2025-1309 HIGH

UiPress lite - Privilege Escalation

CVE-2025-2042 MEDIUM

huang-yk student-manage 1.0 - Cross-Site Request Forgery

CVE-2025-1666 MEDIUM

Cookiebot CMP <4.4.1 - Info Disclosure

CVE-2025-0954 MEDIUM

WP Online Contract <5.1.4 - Auth Bypass

CVE-2025-27666 CRITICAL

Vasion Print < 20.0.1923 and Virtual Appliance < 22.0.843 - Missing Authorization

CVE-2025-1307 CRITICAL

Newscrunch <= 1.8.4.1 - Authenticated Arbitrary File Upload via newscrunch_install_and_activate_plugin

Previous Page 147 of 334 Next

Details

Vulnerabilities 8,343

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy