CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,391 vulnerabilities with CWE-862
CVE-2024-34146 MEDIUM
Jenkins Git server Plugin <114.v068a_c7cc2574 - Privilege Escalation
CVSS 6.5
CVE-2024-33944 MEDIUM
Kestrel WooCommerce AWeber Newsletter Subscription <4.0.2 - Info Di...
CVSS 6.5
CVE-2024-3072 MEDIUM
ACF Front End Editor <2.0.2 - Info Disclosure
CVSS 4.3
CVE-2024-1371 MEDIUM
LeadConnector <1.7 - Info Disclosure
CVSS 6.5
CVE-2024-33588 MEDIUM
BasePress <2.16.1 - Info Disclosure
CVSS 5.4
CVE-2024-33587 MEDIUM
Copy Content Protection <3.9.0 - Info Disclosure
CVSS 5.3
CVE-2024-33586 MEDIUM
Photo Gallery by 10Web < 1.8.20 - Missing Authorization
CVSS 5.3
CVE-2024-33585 MEDIUM
Tyche Softwares Payment Gateway - Missing Authorization
CVSS 4.3
CVE-2024-33589 MEDIUM
WPOmnia KB Support <= 1.6.0 - Missing Authorization
CVSS 6.5
CVE-2024-33595 MEDIUM
Master Addons for Elementor <= 2.0.5.4.1 - Missing Authorization on Duplicate Post
CVSS 4.3
CVE-2024-33594 HIGH
Leaky Paywall <4.20.8 - Info Disclosure
CVSS 7.5
CVE-2024-33593 MEDIUM
RedNao Smart Forms <= 2.6.91 - Missing Authorization
CVSS 4.3
CVE-2024-33591 HIGH
Tips and Tricks HQ Easy Accept Payments <4.9.10 - Info Disclosure
CVSS 7.5
CVE-2024-33684 MEDIUM
Save as PDF plugin by Pdfcrowd <= 3.2.0 - Unauthenticated Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-33636 MEDIUM
WP Page Post Widget Clone <1.0.1 - Info Disclosure
CVSS 5.4
CVE-2024-33635 HIGH
Piotnet Addons For Elementor Pro <7.1.17 - Info Disclosure
CVSS 7.5
CVE-2024-33597 HIGH
ProFaceOff SSU <= 1.5.0 - Missing Authorization
CVSS 7.5
CVE-2024-33596 MEDIUM
Five Star Restaurant Reservations <2.6.16 - Info Disclosure
CVSS 5.3
CVE-2024-33558 MEDIUM
8theme XStore Core <= 5.3.5 - Unauthenticated Arbitrary File Download
CVSS 6.5
CVE-2024-33652 MEDIUM
Real Big Plugins Client Dash <2.2.1 - Info Disclosure
CVSS 5.3
CVE-2024-33566 CRITICAL
N-Media OrderConvo <12.4 - Code Injection
CVSS 10.0
CVE-2024-33686 MEDIUM
Extend Themes Pathway <= 1.0.15 - Missing Authorization
CVSS 4.3
CVE-2024-32822 MEDIUM
Reviews Plus <1.3.4 - Info Disclosure
CVSS 4.3
CVE-2024-32957 MEDIUM
Live Composer <1.5.38 - Auth Bypass
CVSS 4.7
CVE-2024-32829 MEDIUM
Supsystic Data Tables Generator <1.10.31 - Info Disclosure
CVSS 4.3
Details
Vulnerabilities 8,391
Exploit Likelihood High