The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
8,368 vulnerabilities with CWE-862
CVE-2024-37176
MEDIUM
SAP BW/4HANA - Authenticated Privilege Escalation via Improper Authorization Checks in DTP
CVSS 5.5
CVE-2024-34691
MEDIUM
SAP S/4HANA - Missing Authorization in Manage Incoming Payment Files
CVSS 6.5
CVE-2024-34690
MEDIUM
SAP Student Life Cycle Management - Missing Authorization
CVSS 5.4
CVE-2024-34800
HIGH
Aruphash Crafthemes Demo Import <3.3 - Functionality Misuse
CVSS 7.6
CVE-2024-4746
MEDIUM
netgsm Netgsm <= 2.9.32 - Missing Authorization
CVSS 4.3
CVE-2024-4745
MEDIUM
RafflePress Giveaways and Contests by RafflePress <= 1.12.4 - Missing Authorization
CVSS 4.3
CVE-2024-4744
MEDIUM
iPages Flipbook <= 1.5.1 - Missing Authorization
CVSS 5.3
CVE-2024-35742
MEDIUM
Easy Forms for Mailchimp < 6.9.0 - Missing Authorization
CVSS 5.3
CVE-2024-35741
MEDIUM
Awesome Support < 6.1.7 - Missing Authorization
CVSS 4.3
CVE-2024-35735
MEDIUM
CodePeople WP Time Slots Booking Form <= 1.2.11 - Missing Authorization
CVSS 5.3
CVE-2024-35729
MEDIUM
Tickera <= 3.5.2.6 - Missing Authorization
CVSS 5.3
CVE-2024-35727
MEDIUM
Extra Product Options for WooCommerce < 3.0.6 - Missing Authorization
CVSS 4.3
CVE-2024-35726
MEDIUM
Themekraft Buddypress Woocommerce MY ... - Missing Authorization
CVSS 4.3
CVE-2024-35725
MEDIUM
LA-Studio Element Kit for Elementor <= 1.3.6 - Missing Authorization
CVSS 4.3
CVE-2024-35724
MEDIUM
Bosa Elementor Addons and Templates for WooCommerce < 1.0.12 - Missing Authorization
CVSS 4.3
CVE-2024-35723
MEDIUM
Dashboard To-Do List <= 1.2.0 - Missing Authorization
CVSS 4.3
CVE-2024-35722
MEDIUM
Slider Responsive Slideshow < 1.4.0 - Missing Authorization
CVSS 4.3
CVE-2024-35721
MEDIUM
A WP Life Image Gallery < 1.4.5 - Missing Authorization
CVSS 4.3
CVE-2024-35720
MEDIUM
Album Gallery - WordPress Gallery <= 1.5.7 - Missing Authorization
CVSS 4.3
CVE-2024-35717
MEDIUM
A WP Life Media Slider - Photo Sleder, Video Slider, Link Slider, Carousal Slideshow <= 1.3.9 - Missing Authorization
CVSS 4.3
CVE-2024-23524
MEDIUM
PilotPress <= 2.0.30 - Missing Authorization
CVSS 5.3
CVE-2024-22298
MEDIUM
TMS Amelia <1.0.98 - Info Disclosure
CVSS 5.3
CVE-2024-22296
MEDIUM
Code for Recovery <3.14.28 - Info Disclosure
CVSS 4.3
CVE-2024-21751
MEDIUM
RabbitLoader <= 2.19.13 - Missing Authorization
CVSS 5.4
CVE-2024-35748
MEDIUM
OPMC WooCommerce Dropshipping < 5.0.4 - Unauthenticated Arbitrary Email Sending
CVSS 5.3
Details
Vulnerabilities
8,368
Exploit Likelihood
High