The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
8,368 vulnerabilities with CWE-862
CVE-2024-35662
MEDIUM
Simple COD Fees for WooCommerce <= 2.0.2 - Missing Authorization
CVSS 5.4
CVE-2024-35661
MEDIUM
SoftLab Upload Fields for WPForms < 1.0.2 - Missing Authorization
CVSS 5.3
CVE-2024-34802
MEDIUM
AdFoxly - Ad Manager, AdSense Ads & Ads.Txt <= 1.8.5 - Missing Authorization
CVSS 5.3
CVE-2024-32081
MEDIUM
Websupporter Filter Custom Fields & Taxonomies Light <1.05 - RCE
CVSS 4.3
CVE-2024-31304
HIGH
MultiVendorX WC Marketplace < 4.1.3 - Missing Authorization
CVSS 7.1
CVE-2024-31284
MEDIUM
WPDeveloper EmbedPress <= 3.9.8 - Missing Authorization
CVSS 6.5
CVE-2024-31283
HIGH
Advanced Local Pickup for WooCommerce <= 1.6.2 - Missing Authorization
CVSS 7.5
CVE-2024-31276
MEDIUM
WPFactory Products, Order & Customers Export for WooCommerce <= 2.0.8 - Missing Authorization
CVSS 5.3
CVE-2024-31275
HIGH
EventPrime < 3.3.4 - Missing Authorization
CVSS 8.2
CVE-2024-32713
MEDIUM
AI Post Generator | AutoWriter < 3.3 - Missing Authorization
CVSS 5.4
CVE-2024-32705
HIGH
ARForms <= 6.4 - Unauthenticated Arbitrary Plugin Activation and Deactivation
CVSS 7.1
CVE-2024-32704
HIGH
ARForms <= 6.4 - Unauthenticated Arbitrary WordPress Options Removal
CVSS 7.1
CVE-2024-32701
MEDIUM
InstaWP Connect <= 0.1.0.24 - Missing Authorization
CVSS 4.3
CVE-2024-31423
MEDIUM
WP Accessibility Helper (WAH) < 0.6.2.5 - Missing Authorization
CVSS 4.3
CVE-2024-31359
MEDIUM
Premmerce Product Filter for WooCommerce <= 3.7.2 - Missing Authorization
CVSS 4.3
CVE-2024-31352
MEDIUM
Email Subscribers & Newsletters <= 5.7.13 - Missing Authorization
CVSS 5.3
CVE-2024-31350
MEDIUM
AWP Classifieds < 4.3.1 - Missing Authorization
CVSS 4.3
CVE-2024-31347
MEDIUM
Tracking Code Manager <2.1.0 - Info Disclosure
CVSS 4.3
CVE-2024-31307
MEDIUM
appscreo Easy Social Share Buttons <9.4 - Info Disclosure
CVSS 6.3
CVE-2024-32725
MEDIUM
Saleswonder 5 Stars Rating Funnel <1.2.67 - Info Disclosure
CVSS 5.3
CVE-2024-32715
HIGH
Olive One Click Demo Import <= 1.1.1 - Unauthenticated Arbitrary File Download
CVSS 7.5
CVE-2024-32714
MEDIUM
Academy LMS < 1.9.16 - Missing Authorization
CVSS 4.3
CVE-2024-32727
MEDIUM
Rometheme Form For Elementor <1.1.2 - Info Disclosure
CVSS 5.3
CVE-2024-32824
MEDIUM
Evergreen Content Poster <= 1.4.2 - Missing Authorization
CVSS 5.4
CVE-2024-32821
MEDIUM
TotalSuite Total Poll Lite - Info Disclosure
CVSS 4.3
Details
Vulnerabilities
8,368
Exploit Likelihood
High