Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,352 vulnerabilities with CWE-862

CVE-2024-56031 MEDIUM

Yulio Aleman Jimenez Smart Shopify Product <1.0.2 - Info Disclosure

CVE-2024-55991 MEDIUM

WP-CRM System <= 3.2.9.1 - Missing Authorization

CVE-2024-56234 MEDIUM

VW Automobile Lite - Info Disclosure

CVE-2024-56227 MEDIUM

Royal Elementor Addons <= 1.7.1001 - Missing Authorization

CVE-2024-56225 MEDIUM

Premium Addons for Elementor <= 4.10.56 - Missing Authorization

CVE-2024-56219 MEDIUM

MarketingFire Widget Options <4.0.6.1 - Info Disclosure

CVE-2024-56217 MEDIUM

Shahjada Download Manager <= 3.3.03 - Missing Authorization

CVE-2024-56215 MEDIUM

Stephen Sherrard Member Directory & Contact Form <1.7.0 - Info Disc...

CVE-2024-56211 HIGH

DeluxeThemes Userpro <5.1.9 - Info Disclosure

CVE-2024-56512 MEDIUM

Apache NiFi 1.10.0-2.0.0 - Authenticated Missing Authorization for Parameter Contexts and Controller Services

CVE-2024-12955 MEDIUM

PHPGurukul Blood Bank & Donor Management System 2.4 - Cross-Site Request Forgery in /logout.php

CVE-2024-11281 CRITICAL

WooCommerce Point of Sale <6.1.0 - Privilege Escalation

CVE-2024-12413 MEDIUM

MarketKing - Ultimate WooCommerce Multivendor Marketplace Solution ...

CVE-2024-12190 MEDIUM

The Contact Form by Bit Form <2.17.3 - Info Disclosure

CVE-2024-12881 HIGH

The PlugVersions - WordPress <0.0.8 - File Upload

CVE-2024-12594 HIGH

WordPress <7.1.1 - Privilege Escalation

CVE-2024-12210 MEDIUM

Print Invoice & Delivery Notes for WooCommerce <5.4.0 - Info Disclo...

CVE-2024-12617 MEDIUM

WC Price History for Omnibus - Info Disclosure

CVE-2024-12266 MEDIUM

ELEX WooCommerce Dynamic Pricing - Info Disclosure

CVE-2024-11852 MEDIUM

Elementor Addons <5.10.12 - Info Disclosure

CVE-2024-12558 MEDIUM

WP BASE Booking <4.9.2 - Info Disclosure

CVE-2024-56349 MEDIUM

JetBrains TeamCity < 2024.12 - Unauthenticated Build Log Modification

CVE-2024-12331 MEDIUM

File Manager Pro - Filester <= 1.8.6 - Authenticated Arbitrary Plugin Installation via ajax_install_plugin

CVE-2024-56048 HIGH

VibeThemes WPLMS < 1.9.9 - Unauthenticated Arbitrary Option Update

CVE-2024-54381 HIGH

theDotstore Advance Menu Manager <3.1.1 - Info Disclosure

Previous Page 166 of 335 Next

Details

Vulnerabilities 8,352

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy