CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,397 vulnerabilities with CWE-862
CVE-2023-47776 MEDIUM
miniOrange OTP Verification <4.2.1 - Info Disclosure
CVSS 4.3
CVE-2023-47764 MEDIUM
Metaphor Creations Ditty <3.1.24 - Info Disclosure
CVSS 6.5
CVE-2023-47763 MEDIUM
Martin Gibson WP Custom Admin Interface <7.31 - RCE
CVSS 4.3
CVE-2023-47762 MEDIUM
BetterDocs <= 2.5.2 - Missing Authorization
CVSS 4.3
CVE-2023-47761 MEDIUM
WPDeveloper Simple 301 Redirects <2.0.7 - Info Disclosure
CVSS 4.3
CVE-2023-47760 MEDIUM
WPDeveloper Essential Blocks for Gutenberg <= 4.2.0 - Missing Authorization
CVSS 4.3
CVE-2023-47756 MEDIUM
Welcome Email Editor < 5.0.6 - Missing Authorization
CVSS 4.3
CVE-2023-47698 HIGH
Artisan Workshop Japanized For WooCommerce <2.6.4 - Info Disclosure
CVSS 8.6
CVE-2023-47694 MEDIUM
Mini Cart Drawer For WooCommerce <4.0.0 - Info Disclosure
CVSS 5.4
CVE-2023-32299 MEDIUM
Ni WooCommerce Sales Report <3.7.3 - RCE
CVSS 6.5
CVE-2023-32293 MEDIUM
Realwebcare WRC Pricing Tables <2.3.7 - Info Disclosure
CVSS 5.3
CVE-2023-32126 MEDIUM
WPoperation SALERT <1.2.1 - Info Disclosure
CVSS 4.3
CVE-2023-32117 CRITICAL
SoftLab Integrate Google Drive - Info Disclosure
CVSS 9.8
CVE-2023-32094 MEDIUM
Felix Welberg Extended Post Status <1.0.19 - Info Disclosure
CVSS 5.4
CVE-2023-31214 MEDIUM
Arul Prasad J WP Quick Post Duplicator <2.0 - RCE
CVSS 5.4
CVE-2023-31073 MEDIUM
Display custom fields in the frontend - Post and User Profile Fields <= 1.2.0 - Missing Authorization
CVSS 4.3
CVE-2023-30873 MEDIUM
WP Docs <= 1.9.8 - Missing Authorization
CVSS 5.4
CVE-2023-30870 MEDIUM
Sharkdropship <2.2.3 - Privilege Escalation
CVSS 6.5
CVE-2023-30783 MEDIUM
YummyWP Smart WooCommerce Search <2.5.0 - Info Disclosure
CVSS 4.3
CVE-2023-30488 MEDIUM
Featured Post Creative < 1.2.7 - Missing Authorization
CVSS 5.3
CVE-2023-30486 MEDIUM
HashThemes Square <2.0.0 - Info Disclosure
CVSS 4.3
CVE-2023-30479 MEDIUM
Stamped.io Product Reviews & UGC for WooCommerce <2.3.2 - RCE
CVSS 5.3
CVE-2023-30476 MEDIUM
Sparkle Themes Blogger Buzz <1.2.2 - Info Disclosure
CVSS 4.3
CVE-2023-29433 MEDIUM
TencentCloud COS <=1.0.7 - Auth Bypass
CVSS 5.4
CVE-2023-29431 MEDIUM
qTranslate X Cleanup & WPML Import <3.0.1 - RCE
CVSS 4.3
Details
Vulnerabilities 8,397
Exploit Likelihood High