CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,358 vulnerabilities with CWE-862
CVE-2024-47317 MEDIUM
WordPress Ads by WPQuads <= 2.0.84 - Broken Access Control
CVSS 4.3
CVE-2024-47314 HIGH
WP Sunshine Photo Cart <3.2.8 - Info Disclosure
CVSS 7.1
CVE-2024-47311 MEDIUM
Kraft Plugins Wheel of Life <1.1.8 - Info Disclosure
CVSS 5.3
CVE-2024-47308 MEDIUM
Templately <3.1.2 - Info Disclosure
CVSS 6.5
CVE-2024-47302 MEDIUM
Fluent Support <= 1.8.0 - Missing Authorization on Email Verification
CVSS 5.3
CVE-2024-44052 MEDIUM
HelloAsso < 1.1.10 - Missing Authorization
CVSS 4.3
CVE-2024-44038 MEDIUM
Sunshine Photo Cart <= 3.2.9 - Missing Authorization
CVSS 5.3
CVE-2024-44031 MEDIUM
JoomSport <= 5.6.3 - Missing Authorization
CVSS 4.3
CVE-2024-44021 MEDIUM
Truepush < 1.0.8 - Unauthenticated Broken Access Control
CVSS 5.4
CVE-2024-44020 MEDIUM
WP Free SSL < 1.2.7 - Missing Authorization
CVSS 4.3
CVE-2024-44019 MEDIUM
Contact Form 7 Campaign Monitor Extension <= 0.4.67 - Unauthenticated Arbitrary File Deletion
CVSS 5.3
CVE-2024-44006 MEDIUM
WooCommerce Multilingual & Multicurrency <= 5.3.6 - Missing Authorization
CVSS 4.3
CVE-2024-43998 MEDIUM
WebsiteinWP Blogpoet <= 1.0.3 - Missing Authorization
CVSS 6.5
CVE-2024-43982 HIGH
Geek Code Lab Login As Users <= 1.4.3 - Missing Authorization
CVSS 8.8
CVE-2024-43981 MEDIUM
GeoDirectory < 2.3.70 - Missing Authorization
CVSS 4.3
CVE-2024-43980 MEDIUM
CozyThemes Fota WP <= 1.4.1 - Missing Authorization
CVSS 6.5
CVE-2024-43979 MEDIUM
CozyThemes Blockbooster <= 1.0.10 - Missing Authorization
CVSS 6.5
CVE-2024-43974 MEDIUM
CozyThemes ReviveNews <= 1.0.2 - Missing Authorization
CVSS 6.5
CVE-2024-43973 MEDIUM
GetPaid <= 2.8.11 - Missing Authorization
CVSS 4.3
CVE-2024-43968 MEDIUM
Newspack < 3.8.6 - Missing Authorization
CVSS 4.3
CVE-2024-43962 MEDIUM
LWS Affiliation <= 2.3.4 - Missing Authorization
CVSS 5.4
CVE-2024-43956 MEDIUM
MemberPress <= 1.11.34 - Missing Authorization
CVSS 6.5
CVE-2024-43937 MEDIUM
Themeum WP Crowdfunding <= 2.1.10 - Missing Authorization
CVSS 6.4
CVE-2024-43932 MEDIUM
The Plus Addons for Elementor Page Builder Lite <= 5.6.2 - Missing Authorization
CVSS 6.5
CVE-2024-43929 MEDIUM
eyecix JobSearch < 2.5.4 - Missing Authorization
CVSS 6.5
Details
Vulnerabilities 8,358
Exploit Likelihood High