The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
8,396 vulnerabilities with CWE-862
CVE-2023-46196
MEDIUM
Repuso Social proof testimonials and reviews <4.97 - RCE
CVSS 4.3
CVE-2023-46195
MEDIUM
CoSchedule Headline Analyzer <1.3.1 - Info Disclosure
CVSS 6.5
CVE-2023-46188
MEDIUM
Freesoul Deactivate Plugins - Missing Authorization
CVSS 4.3
CVE-2023-46083
MEDIUM
Kali Forms <2.3.27 - Info Disclosure
CVSS 5.3
CVE-2023-46082
MEDIUM
Cyberlord92 Broken Link Checker | Finder <2.4.2 - RCE
CVSS 5.3
CVE-2023-46080
MEDIUM
Farhan Noor ApplyOnline - Info Disclosure
CVSS 4.3
CVE-2023-46079
MEDIUM
WP Royal Ashe Extra < 1.2.9 - Missing Authorization
CVSS 5.4
CVE-2023-46073
MEDIUM
nofearinc DX Delete Attached Media <2.0.5.1 - Info Disclosure
CVSS 5.3
CVE-2023-45828
MEDIUM
RumbleTalk Live Group Chat <6.2.5 - Info Disclosure
CVSS 5.4
CVE-2023-45766
MEDIUM
Poll Maker <= 4.7.1 - Missing Authorization
CVSS 5.3
CVE-2023-45765
MEDIUM
weDevs WP ERP <= 1.12.6 - Missing Authorization
CVSS 4.3
CVE-2023-45760
MEDIUM
wpDiscuz <= 7.6.3 - Missing Authorization
CVSS 4.3
CVE-2023-45649
MEDIUM
CodePeople Appointment Hour Booking <1.4.23 - Info Disclosure
CVSS 5.3
CVE-2023-45636
MEDIUM
WebToffee WordPress Backup & Migration <1.4.1 - RCE
CVSS 5.4
CVE-2023-45631
MEDIUM
wpdevart Gallery Album < 2.0.3 - Missing Authorization
CVSS 4.3
CVE-2023-45275
MEDIUM
Kali Forms <= 2.3.28 - Missing Authorization
CVSS 6.5
CVE-2023-45271
MEDIUM
WowStore Team ProductX - Gutenberg WooCommerce Blocks <2.7.8 - Info...
CVSS 4.3
CVE-2023-45110
MEDIUM
BoldThemes Bold Timeline Lite - RCE
CVSS 4.3
CVE-2023-45104
HIGH
WPDeveloper BetterLinks <= 1.6.0 - Missing Authorization
CVSS 7.3
CVE-2023-45101
MEDIUM
Customer Reviews for WooCommerce <= 5.36.0 - Missing Authorization
CVSS 4.3
CVE-2023-45061
MEDIUM
AWSM Innovations WP Job Openings <3.4.1 - Info Disclosure
CVSS 5.3
CVE-2023-45045
MEDIUM
Kishor Khambu WP Custom Widget <1.2.5 - RCE
CVSS 5.4
CVE-2023-45002
MEDIUM
WP User Frontend <3.6.8 - Privilege Escalation
CVSS 4.3
CVE-2023-44988
MEDIUM
Martin Gibson WP Custom Admin Interface <7.32 - RCE
CVSS 4.3
CVE-2023-44258
MEDIUM
Schema App Structured Data <= 1.23.1 - Missing Authorization
CVSS 5.3
Details
Vulnerabilities
8,396
Exploit Likelihood
High