The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
8,358 vulnerabilities with CWE-862
CVE-2024-47317
MEDIUM
WordPress Ads by WPQuads <= 2.0.84 - Broken Access Control
CVSS 4.3
CVE-2024-47314
HIGH
WP Sunshine Photo Cart <3.2.8 - Info Disclosure
CVSS 7.1
CVE-2024-47311
MEDIUM
Kraft Plugins Wheel of Life <1.1.8 - Info Disclosure
CVSS 5.3
CVE-2024-47308
MEDIUM
Templately <3.1.2 - Info Disclosure
CVSS 6.5
CVE-2024-47302
MEDIUM
Fluent Support <= 1.8.0 - Missing Authorization on Email Verification
CVSS 5.3
CVE-2024-44052
MEDIUM
HelloAsso < 1.1.10 - Missing Authorization
CVSS 4.3
CVE-2024-44038
MEDIUM
Sunshine Photo Cart <= 3.2.9 - Missing Authorization
CVSS 5.3
CVE-2024-44031
MEDIUM
JoomSport <= 5.6.3 - Missing Authorization
CVSS 4.3
CVE-2024-44021
MEDIUM
Truepush < 1.0.8 - Unauthenticated Broken Access Control
CVSS 5.4
CVE-2024-44020
MEDIUM
WP Free SSL < 1.2.7 - Missing Authorization
CVSS 4.3
CVE-2024-44019
MEDIUM
Contact Form 7 Campaign Monitor Extension <= 0.4.67 - Unauthenticated Arbitrary File Deletion
CVSS 5.3
CVE-2024-44006
MEDIUM
WooCommerce Multilingual & Multicurrency <= 5.3.6 - Missing Authorization
CVSS 4.3
CVE-2024-43998
MEDIUM
WebsiteinWP Blogpoet <= 1.0.3 - Missing Authorization
CVSS 6.5
CVE-2024-43982
HIGH
Geek Code Lab Login As Users <= 1.4.3 - Missing Authorization
CVSS 8.8
CVE-2024-43981
MEDIUM
GeoDirectory < 2.3.70 - Missing Authorization
CVSS 4.3
CVE-2024-43980
MEDIUM
CozyThemes Fota WP <= 1.4.1 - Missing Authorization
CVSS 6.5
CVE-2024-43979
MEDIUM
CozyThemes Blockbooster <= 1.0.10 - Missing Authorization
CVSS 6.5
CVE-2024-43974
MEDIUM
CozyThemes ReviveNews <= 1.0.2 - Missing Authorization
CVSS 6.5
CVE-2024-43973
MEDIUM
GetPaid <= 2.8.11 - Missing Authorization
CVSS 4.3
CVE-2024-43968
MEDIUM
Newspack < 3.8.6 - Missing Authorization
CVSS 4.3
CVE-2024-43962
MEDIUM
LWS Affiliation <= 2.3.4 - Missing Authorization
CVSS 5.4
CVE-2024-43956
MEDIUM
MemberPress <= 1.11.34 - Missing Authorization
CVSS 6.5
CVE-2024-43937
MEDIUM
Themeum WP Crowdfunding <= 2.1.10 - Missing Authorization
CVSS 6.4
CVE-2024-43932
MEDIUM
The Plus Addons for Elementor Page Builder Lite <= 5.6.2 - Missing Authorization
CVSS 6.5
CVE-2024-43929
MEDIUM
eyecix JobSearch < 2.5.4 - Missing Authorization
CVSS 6.5
Details
Vulnerabilities
8,358
Exploit Likelihood
High