CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,368 vulnerabilities with CWE-862
CVE-2024-32820 MEDIUM
Social Share Icons & Social Share Buttons < 3.6.2 - Unauthenticated Notice Dismissal via Broken Access Control
CVSS 5.3
CVE-2024-32818 MEDIUM
WordPress Meta Data and Taxonomies Filter (MDTF) <= 1.3.3 - Missing Authorization
CVSS 4.3
CVE-2024-32814 MEDIUM
Zorem Advanced Local Pickup for WooCommerce <1.6.1 - Info Disclosure
CVSS 5.3
CVE-2024-32813 MEDIUM
SoftLab Integrate Google Drive <1.3.9 - Info Disclosure
CVSS 5.3
CVE-2024-32805 MEDIUM
Social Snap <1.3.5 - Info Disclosure
CVSS 6.5
CVE-2024-32804 MEDIUM
Martin Gibson WP GoToWebinar <14.46 - Info Disclosure
CVSS 4.3
CVE-2024-32799 MEDIUM
Easy Property Listings <= 3.5.3 - Missing Authorization
CVSS 5.3
CVE-2024-32798 HIGH
WP Travel Engine < 5.8.0 - Missing Authorization
CVSS 7.5
CVE-2024-32797 MEDIUM
Martin Gibson WP LinkedIn Auto Publish <8.11 - Info Disclosure
CVSS 5.4
CVE-2024-32792 MEDIUM
Hummingbird <= 3.7.3 - Missing Authorization
CVSS 4.3
CVE-2024-32787 MEDIUM
Copy Content Protection <3.7.1 - Info Disclosure
CVSS 4.3
CVE-2024-32784 MEDIUM
CookieHub < 1.1.0 - Missing Authorization
CVSS 4.3
CVE-2024-32783 MEDIUM
wpcreativeidea Advanced Testimonial Carousel - Info Disclosure
CVSS 4.3
CVE-2024-32779 MEDIUM
Avirtum Vision Interactive <1.7.1 - Info Disclosure
CVSS 5.3
CVE-2024-32777 HIGH
BizPrint <= 4.3.39 - Missing Authorization
CVSS 7.5
CVE-2024-35669 MEDIUM
Bowo Debug Log Manager < 2.3.1 - Missing Authorization
CVSS 4.3
CVE-2024-35660 MEDIUM
Master Addons for Elementor <= 2.0.5.4.1 - Missing Authorization
CVSS 6.5
CVE-2024-34435 MEDIUM
CodeRevolution Aiomatic <1.9.3 - Info Disclosure
CVSS 4.3
CVE-2024-33572 MEDIUM
POSIMYTH Nexter Blocks <= 3.2.5 - Missing Authorization
CVSS 4.3
CVE-2024-33565 CRITICAL
UkrSolution Barcode Scanner with Inventory & Order Manager <= 1.5.3 - Unauthenticated Missing Authorization
CVSS 9.1
CVE-2024-33564 HIGH
8theme XStore <= 9.3.8 - Unauthenticated Arbitrary Option Update
CVSS 8.8
CVE-2024-33563 HIGH
8theme XStore <= 9.3.8 - Missing Authorization
CVSS 7.6
CVE-2024-33561 HIGH
8theme XStore <= 9.3.8 - Unauthenticated Missing Authorization
CVSS 7.5
CVE-2024-33555 HIGH
8theme XStore Core < 5.3.8 - Authenticated Missing Authorization
CVSS 8.1
CVE-2024-33547 HIGH
AA-Team WZone <= 14.0.10 - Missing Authorization
CVSS 8.3
Details
Vulnerabilities 8,368
Exploit Likelihood High