CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,361 vulnerabilities with CWE-862
CVE-2024-38719 MEDIUM
Creative Motion Auto Featured Image <4.1.2 - RCE
CVSS 4.3
CVE-2024-38714 MEDIUM
Epsiloncool WP Fast Total Search <1.68.232 - Info Disclosure
CVSS 4.3
CVE-2024-38707 MEDIUM
WPDeveloper EmbedPress <4.0.4 - Info Disclosure
CVSS 6.3
CVE-2024-38702 MEDIUM
Tyche Softwares Product Delivery Date for WooCommerce - Lite <2.7.3...
CVSS 5.3
CVE-2024-38695 MEDIUM
Martin Gibson WP GoToWebinar <15.6 - Info Disclosure
CVSS 4.3
CVE-2024-38690 MEDIUM
Avirtum iPanorama 360 <1.8.3 - Info Disclosure
CVSS 5.3
CVE-2024-37929 MEDIUM
solwin User Activity Log Pro <2.3.4 - Privilege Escalation
CVSS 6.3
CVE-2024-37926 MEDIUM
Alex Volkov WAH <0.6.2.9 - Info Disclosure
CVSS 5.3
CVE-2024-37921 MEDIUM
Kiboko Labs Chained Quiz <1.3.2.8 - Info Disclosure
CVSS 5.3
CVE-2024-37517 MEDIUM
Spectra < 2.13.7 - Missing Authorization
CVSS 4.3
CVE-2024-37516 MEDIUM
fifu.App Featured Image from URL <4.8.2 - Info Disclosure
CVSS 6.3
CVE-2024-37510 MEDIUM
Charitable <1.8.1.7 - Info Disclosure
CVSS 6.5
CVE-2024-37506 MEDIUM
Charitable <1.8.1.7 - Info Disclosure
CVSS 5.3
CVE-2024-37505 MEDIUM
Business One Page <= 1.2.9 - Missing Authorization on Notice Dismissal
CVSS 4.3
CVE-2024-37483 MEDIUM
The Post Grid <= 7.7.4 - Missing Authorization
CVSS 5.4
CVE-2024-37482 MEDIUM
The Post Grid <= 7.7.4 - Missing Authorization
CVSS 4.3
CVE-2024-37481 MEDIUM
The Post Grid <= 7.7.4 - Missing Authorization
CVSS 6.5
CVE-2024-37477 MEDIUM
Newspack Content Converter <0.1.5 - RCE
CVSS 6.5
CVE-2024-37475 MEDIUM
Newspack Newsletters <2.13.2 - Info Disclosure
CVSS 5.3
CVE-2024-37470 HIGH
Woffice Core < 5.4.8 - Unauthenticated Broken Access Control
CVSS 8.2
CVE-2024-37468 MEDIUM
blazethemes Newsmatic <1.3.1 - Privilege Escalation
CVSS 5.3
CVE-2024-37463 MEDIUM
CRM Perks Forms <= 1.1.5 - Missing Authorization
CVSS 5.3
CVE-2024-37456 MEDIUM
Noptin Newsletter Noptin < 3.4.2 - Missing Authorization
CVSS 5.3
CVE-2024-37453 MEDIUM
ProfileGrid < 5.8.7 - Missing Authorization
CVSS 4.3
CVE-2024-37444 MEDIUM
Defender Security <= 4.7.1 - Missing Authorization
CVSS 5.3
Details
Vulnerabilities 8,361
Exploit Likelihood High