The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
8,396 vulnerabilities with CWE-862
CVE-2023-34381
MEDIUM
Gesundheit Bewegt GmbH Zippy <1.6.2 - Info Disclosure
CVSS 5.3
CVE-2023-34376
MEDIUM
Rextheme Change WooCommerce Add To Cart Button Text <1.3 - RCE
CVSS 5.4
CVE-2023-34019
MEDIUM
Uncanny Owl Uncanny Toolkit for LearnDash <3.6.4.3 - Info Disclosure
CVSS 6.5
CVE-2023-34014
MEDIUM
G5Theme Grid Plus <1.3.2 - Info Disclosure
CVSS 5.4
CVE-2023-34009
MEDIUM
Inisev Social Media & Share Icons <2.8.1 - Info Disclosure
CVSS 4.3
CVE-2023-33998
MEDIUM
cybernetikz Easy Social Icons <3.2.5 - Info Disclosure
CVSS 4.3
CVE-2023-33996
HIGH
CleanTalk Anti-Spam <6.10 - Auth Bypass
CVSS 8.8
CVE-2023-33995
MEDIUM
Photo Gallery <1.8.15 - Info Disclosure
CVSS 4.3
CVE-2023-33994
MEDIUM
Slimstat Analytics <= 5.0.5.1 - Missing Authorization
CVSS 6.5
CVE-2023-33928
MEDIUM
WebToffee WordPress Backup & Migration <1.4.0 - RCE
CVSS 4.3
CVE-2023-33324
MEDIUM
wppal Easy Captcha <= 1.0 - Missing Authorization
CVSS 6.5
CVE-2023-33215
MEDIUM
Taggbox < 3.3 - Missing Authorization
CVSS 5.4
CVE-2023-32963
MEDIUM
a3rev Software WooCommerce Predictive Search <5.8.0 - Info Disclosure
CVSS 5.3
CVE-2023-32798
MEDIUM
10up Simple Page Ordering <2.5.0 - Privilege Escalation
CVSS 5.3
CVE-2023-32601
MEDIUM
Booking Ultra Pro <= 1.1.12 - Missing Authorization
CVSS 5.4
CVE-2023-32599
MEDIUM
Bill Minozzi reCAPTCHA <1.22 - Info Disclosure
CVSS 4.3
CVE-2023-32593
MEDIUM
GS Pins for Pinterest < 1.6.7 - Missing Authorization
CVSS 5.4
CVE-2023-32586
MEDIUM
Soundcloud Is Gold <2.5.1 - Info Disclosure
CVSS 4.3
CVE-2023-32585
HIGH
Total-Soft Portfolio Gallery - Responsive Image Gallery <1.4.6 - In...
CVSS 7.5
CVE-2023-32581
MEDIUM
MobileMonkey WP-Chatbot - Info Disclosure
CVSS 5.4
CVE-2023-32574
MEDIUM
Fahad Mahmood Injection Guard <1.2.1 - Command Injection
CVSS 4.3
CVE-2023-32520
HIGH
Webcodin WCP Contact Form <3.1.0 - Info Disclosure
CVSS 7.5
CVE-2023-32519
MEDIUM
Webcodin WCP Contact Form <3.1.0 - Info Disclosure
CVSS 4.3
CVE-2023-32507
HIGH
wp3sixty Woo Custom Emails <2.2 - Info Disclosure
CVSS 7.3
CVE-2023-32506
MEDIUM
Link Whisper Free <= 0.6.3 - Unauthenticated Broken Access Control
CVSS 6.5
Details
Vulnerabilities
8,396
Exploit Likelihood
High