The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
8,361 vulnerabilities with CWE-862
CVE-2024-38719
MEDIUM
Creative Motion Auto Featured Image <4.1.2 - RCE
CVSS 4.3
CVE-2024-38714
MEDIUM
Epsiloncool WP Fast Total Search <1.68.232 - Info Disclosure
CVSS 4.3
CVE-2024-38707
MEDIUM
WPDeveloper EmbedPress <4.0.4 - Info Disclosure
CVSS 6.3
CVE-2024-38702
MEDIUM
Tyche Softwares Product Delivery Date for WooCommerce - Lite <2.7.3...
CVSS 5.3
CVE-2024-38695
MEDIUM
Martin Gibson WP GoToWebinar <15.6 - Info Disclosure
CVSS 4.3
CVE-2024-38690
MEDIUM
Avirtum iPanorama 360 <1.8.3 - Info Disclosure
CVSS 5.3
CVE-2024-37929
MEDIUM
solwin User Activity Log Pro <2.3.4 - Privilege Escalation
CVSS 6.3
CVE-2024-37926
MEDIUM
Alex Volkov WAH <0.6.2.9 - Info Disclosure
CVSS 5.3
CVE-2024-37921
MEDIUM
Kiboko Labs Chained Quiz <1.3.2.8 - Info Disclosure
CVSS 5.3
CVE-2024-37517
MEDIUM
Spectra < 2.13.7 - Missing Authorization
CVSS 4.3
CVE-2024-37516
MEDIUM
fifu.App Featured Image from URL <4.8.2 - Info Disclosure
CVSS 6.3
CVE-2024-37510
MEDIUM
Charitable <1.8.1.7 - Info Disclosure
CVSS 6.5
CVE-2024-37506
MEDIUM
Charitable <1.8.1.7 - Info Disclosure
CVSS 5.3
CVE-2024-37505
MEDIUM
Business One Page <= 1.2.9 - Missing Authorization on Notice Dismissal
CVSS 4.3
CVE-2024-37483
MEDIUM
The Post Grid <= 7.7.4 - Missing Authorization
CVSS 5.4
CVE-2024-37482
MEDIUM
The Post Grid <= 7.7.4 - Missing Authorization
CVSS 4.3
CVE-2024-37481
MEDIUM
The Post Grid <= 7.7.4 - Missing Authorization
CVSS 6.5
CVE-2024-37477
MEDIUM
Newspack Content Converter <0.1.5 - RCE
CVSS 6.5
CVE-2024-37475
MEDIUM
Newspack Newsletters <2.13.2 - Info Disclosure
CVSS 5.3
CVE-2024-37470
HIGH
Woffice Core < 5.4.8 - Unauthenticated Broken Access Control
CVSS 8.2
CVE-2024-37468
MEDIUM
blazethemes Newsmatic <1.3.1 - Privilege Escalation
CVSS 5.3
CVE-2024-37463
MEDIUM
CRM Perks Forms <= 1.1.5 - Missing Authorization
CVSS 5.3
CVE-2024-37456
MEDIUM
Noptin Newsletter Noptin < 3.4.2 - Missing Authorization
CVSS 5.3
CVE-2024-37453
MEDIUM
ProfileGrid < 5.8.7 - Missing Authorization
CVSS 4.3
CVE-2024-37444
MEDIUM
Defender Security <= 4.7.1 - Missing Authorization
CVSS 5.3
Details
Vulnerabilities
8,361
Exploit Likelihood
High