CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,368 vulnerabilities with CWE-862
CVE-2024-35662 MEDIUM
Simple COD Fees for WooCommerce <= 2.0.2 - Missing Authorization
CVSS 5.4
CVE-2024-35661 MEDIUM
SoftLab Upload Fields for WPForms < 1.0.2 - Missing Authorization
CVSS 5.3
CVE-2024-34802 MEDIUM
AdFoxly - Ad Manager, AdSense Ads & Ads.Txt <= 1.8.5 - Missing Authorization
CVSS 5.3
CVE-2024-32081 MEDIUM
Websupporter Filter Custom Fields & Taxonomies Light <1.05 - RCE
CVSS 4.3
CVE-2024-31304 HIGH
MultiVendorX WC Marketplace < 4.1.3 - Missing Authorization
CVSS 7.1
CVE-2024-31284 MEDIUM
WPDeveloper EmbedPress <= 3.9.8 - Missing Authorization
CVSS 6.5
CVE-2024-31283 HIGH
Advanced Local Pickup for WooCommerce <= 1.6.2 - Missing Authorization
CVSS 7.5
CVE-2024-31276 MEDIUM
WPFactory Products, Order & Customers Export for WooCommerce <= 2.0.8 - Missing Authorization
CVSS 5.3
CVE-2024-31275 HIGH
EventPrime < 3.3.4 - Missing Authorization
CVSS 8.2
CVE-2024-32713 MEDIUM
AI Post Generator | AutoWriter < 3.3 - Missing Authorization
CVSS 5.4
CVE-2024-32705 HIGH
ARForms <= 6.4 - Unauthenticated Arbitrary Plugin Activation and Deactivation
CVSS 7.1
CVE-2024-32704 HIGH
ARForms <= 6.4 - Unauthenticated Arbitrary WordPress Options Removal
CVSS 7.1
CVE-2024-32701 MEDIUM
InstaWP Connect <= 0.1.0.24 - Missing Authorization
CVSS 4.3
CVE-2024-31423 MEDIUM
WP Accessibility Helper (WAH) < 0.6.2.5 - Missing Authorization
CVSS 4.3
CVE-2024-31359 MEDIUM
Premmerce Product Filter for WooCommerce <= 3.7.2 - Missing Authorization
CVSS 4.3
CVE-2024-31352 MEDIUM
Email Subscribers & Newsletters <= 5.7.13 - Missing Authorization
CVSS 5.3
CVE-2024-31350 MEDIUM
AWP Classifieds < 4.3.1 - Missing Authorization
CVSS 4.3
CVE-2024-31347 MEDIUM
Tracking Code Manager <2.1.0 - Info Disclosure
CVSS 4.3
CVE-2024-31307 MEDIUM
appscreo Easy Social Share Buttons <9.4 - Info Disclosure
CVSS 6.3
CVE-2024-32725 MEDIUM
Saleswonder 5 Stars Rating Funnel <1.2.67 - Info Disclosure
CVSS 5.3
CVE-2024-32715 HIGH
Olive One Click Demo Import <= 1.1.1 - Unauthenticated Arbitrary File Download
CVSS 7.5
CVE-2024-32714 MEDIUM
Academy LMS < 1.9.16 - Missing Authorization
CVSS 4.3
CVE-2024-32727 MEDIUM
Rometheme Form For Elementor <1.1.2 - Info Disclosure
CVSS 5.3
CVE-2024-32824 MEDIUM
Evergreen Content Poster <= 1.4.2 - Missing Authorization
CVSS 5.4
CVE-2024-32821 MEDIUM
TotalSuite Total Poll Lite - Info Disclosure
CVSS 4.3
Details
Vulnerabilities 8,368
Exploit Likelihood High