The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
8,401 vulnerabilities with CWE-862
CVE-2023-38394
MEDIUM
Artbees JupiterX Core <3.3.0 - Info Disclosure
CVSS 5.4
CVE-2023-38393
HIGH
Saturday Drive Ninja Forms <3.6.25 - Info Disclosure
CVSS 7.6
CVE-2023-36516
HIGH
ThimPress LearnPress <4.2.3 - Info Disclosure
CVSS 7.6
CVE-2023-36515
HIGH
ThimPress LearnPress <4.2.3 - Info Disclosure
CVSS 7.3
CVE-2023-39310
MEDIUM
ThemeFusion Fusion Builder <3.11.1 - Info Disclosure
CVSS 5.4
CVE-2023-37872
MEDIUM
WooCommerce Ship to Multiple Addresses <3.8.5 - Info Disclosure
CVSS 6.5
CVE-2023-37869
MEDIUM
Premium Addons PRO < 2.9.0 - Missing Authorization
CVSS 6.5
CVE-2023-36684
HIGH
Brainstorm Force Convert Pro <1.7.5 - RCE
CVSS 7.1
CVE-2023-36683
MEDIUM
Schema Pro < 2.7.8 - Missing Authorization
CVSS 6.5
CVE-2023-36676
MEDIUM
Brainstorm Force Spectra - Info Disclosure
CVSS 5.4
CVE-2023-41805
MEDIUM
Brainstorm Force Starter Templates and Premium Starter Templates <= 3.2.5 - Missing Authorization
CVSS 6.5
CVE-2023-39998
HIGH
Betheme <= 27.1.1 - Missing Authorization
CVSS 8.2
CVE-2023-39993
MEDIUM
Elements kit Elementor addons <= 2.9.0 - Missing Authorization
CVSS 4.3
CVE-2023-39990
MEDIUM
Paid Memberships Pro < 1.2.3 - Missing Authorization
CVSS 5.4
CVE-2023-39922
MEDIUM
ThemeFusion Avada <= 7.11.1 - Authenticated Missing Authorization
CVSS 4.3
CVE-2023-38386
HIGH
Saturday Drive Ninja Forms <3.6.25 - Info Disclosure
CVSS 7.6
CVE-2023-37870
HIGH
WooCommerce Warranty Requests <2.1.9 - Info Disclosure
CVSS 8.1
CVE-2023-36512
MEDIUM
Woo AutomateWoo <5.7.5 - Info Disclosure
CVSS 6.5
CVE-2023-35050
MEDIUM
Elementor Pro < 3.13.0 - Missing Authorization
CVSS 5.4
CVE-2023-35049
HIGH
WooCommerce Stripe Payment Gateway <= 7.4.0 - Unauthenticated Missing Authorization
CVSS 7.5
CVE-2023-47770
HIGH
Betheme <= 27.1.1 - Missing Authorization
CVSS 7.6
CVE-2023-47681
MEDIUM
QuadLayers WooCommerce Checkout Manager <7.3.0 - Info Disclosure
CVSS 6.5
CVE-2023-46148
HIGH
Themify Ultra < 7.3.5 - Authenticated Arbitrary Settings Change
CVSS 8.8
CVE-2023-46146
HIGH
Themify Ultra < 7.3.5 - Missing Authorization
CVSS 8.3
CVE-2023-45658
HIGH
POSIMYTH Nexter <2.0.3 - Info Disclosure
CVSS 7.6
Details
Vulnerabilities
8,401
Exploit Likelihood
High