The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
8,391 vulnerabilities with CWE-862
CVE-2024-34146
MEDIUM
Jenkins Git server Plugin <114.v068a_c7cc2574 - Privilege Escalation
CVSS 6.5
CVE-2024-33944
MEDIUM
Kestrel WooCommerce AWeber Newsletter Subscription <4.0.2 - Info Di...
CVSS 6.5
CVE-2024-3072
MEDIUM
ACF Front End Editor <2.0.2 - Info Disclosure
CVSS 4.3
CVE-2024-1371
MEDIUM
LeadConnector <1.7 - Info Disclosure
CVSS 6.5
CVE-2024-33588
MEDIUM
BasePress <2.16.1 - Info Disclosure
CVSS 5.4
CVE-2024-33587
MEDIUM
Copy Content Protection <3.9.0 - Info Disclosure
CVSS 5.3
CVE-2024-33586
MEDIUM
Photo Gallery by 10Web < 1.8.20 - Missing Authorization
CVSS 5.3
CVE-2024-33585
MEDIUM
Tyche Softwares Payment Gateway - Missing Authorization
CVSS 4.3
CVE-2024-33589
MEDIUM
WPOmnia KB Support <= 1.6.0 - Missing Authorization
CVSS 6.5
CVE-2024-33595
MEDIUM
Master Addons for Elementor <= 2.0.5.4.1 - Missing Authorization on Duplicate Post
CVSS 4.3
CVE-2024-33594
HIGH
Leaky Paywall <4.20.8 - Info Disclosure
CVSS 7.5
CVE-2024-33593
MEDIUM
RedNao Smart Forms <= 2.6.91 - Missing Authorization
CVSS 4.3
CVE-2024-33591
HIGH
Tips and Tricks HQ Easy Accept Payments <4.9.10 - Info Disclosure
CVSS 7.5
CVE-2024-33684
MEDIUM
Save as PDF plugin by Pdfcrowd <= 3.2.0 - Unauthenticated Stored Cross-Site Scripting
CVSS 6.5
CVE-2024-33636
MEDIUM
WP Page Post Widget Clone <1.0.1 - Info Disclosure
CVSS 5.4
CVE-2024-33635
HIGH
Piotnet Addons For Elementor Pro <7.1.17 - Info Disclosure
CVSS 7.5
CVE-2024-33597
HIGH
ProFaceOff SSU <= 1.5.0 - Missing Authorization
CVSS 7.5
CVE-2024-33596
MEDIUM
Five Star Restaurant Reservations <2.6.16 - Info Disclosure
CVSS 5.3
CVE-2024-33558
MEDIUM
8theme XStore Core <= 5.3.5 - Unauthenticated Arbitrary File Download
CVSS 6.5
CVE-2024-33652
MEDIUM
Real Big Plugins Client Dash <2.2.1 - Info Disclosure
CVSS 5.3
CVE-2024-33566
CRITICAL
N-Media OrderConvo <12.4 - Code Injection
CVSS 10.0
CVE-2024-33686
MEDIUM
Extend Themes Pathway <= 1.0.15 - Missing Authorization
CVSS 4.3
CVE-2024-32822
MEDIUM
Reviews Plus <1.3.4 - Info Disclosure
CVSS 4.3
CVE-2024-32957
MEDIUM
Live Composer <1.5.38 - Auth Bypass
CVSS 4.7
CVE-2024-32829
MEDIUM
Supsystic Data Tables Generator <1.10.31 - Info Disclosure
CVSS 4.3
Details
Vulnerabilities
8,391
Exploit Likelihood
High