The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
8,401 vulnerabilities with CWE-862
CVE-2023-29174
MEDIUM
NervyThemes SKU Label Changer For WooCommerce <3.0 - Info Disclosure
CVSS 6.5
CVE-2023-51524
MEDIUM
weForms < 1.6.18 - Missing Authorization
CVSS 4.3
CVE-2023-51413
MEDIUM
Piotnet Forms <1.0.29 - Info Disclosure
CVSS 5.3
CVE-2023-48280
HIGH
Consensu.IO <1.0.1 - Info Disclosure
CVSS 7.5
CVE-2023-47828
MEDIUM
Mandrill wpMandrill < 1.33 - Missing Authorization
CVSS 4.3
CVE-2023-44234
MEDIUM
WP GPX Map < 1.7.08 - Missing Authorization
CVSS 4.3
CVE-2023-41240
MEDIUM
Vark Pricing Deals for WooCommerce <2.0.3.2 - Info Disclosure
CVSS 5.3
CVE-2023-40672
MEDIUM
Sticky Social Media Icons <2.1 - Info Disclosure
CVSS 5.4
CVE-2023-40603
MEDIUM
Gangesh Matta Simple Org Chart <2.3.4 - Info Disclosure
CVSS 5.3
CVE-2023-40209
MEDIUM
Highcompress Image Compressor < 6.0.0 - Missing Authorization
CVSS 6.5
CVE-2023-38395
MEDIUM
Afzal Multani WP Clone Menu <1.0.1 - Info Disclosure
CVSS 5.4
CVE-2023-25030
MEDIUM
Buy Me a Coffee <= 3.7 - Missing Authorization
CVSS 4.3
CVE-2023-52177
MEDIUM
SoftLab Integrate Google Drive <= 1.3.3 - Missing Authorization
CVSS 5.4
CVE-2023-52117
MEDIUM
Metagauss ProfileGrid <5.6.6 - Info Disclosure
CVSS 4.3
CVE-2023-51680
MEDIUM
TechnoVama Quotes for WooCommerce <2.0.1 - Info Disclosure
CVSS 4.3
CVE-2023-51679
MEDIUM
BulkGate SMS Plugin <3.0.2 - Info Disclosure
CVSS 5.4
CVE-2023-51671
MEDIUM
FunnelKit Checkout <3.10.3 - Info Disclosure
CVSS 5.4
CVE-2023-51670
MEDIUM
FunnelKit Checkout <3.10.3 - Info Disclosure
CVSS 4.3
CVE-2023-51537
MEDIUM
Awesome Support <6.1.5 - Info Disclosure
CVSS 5.3
CVE-2023-51526
MEDIUM
Brett Shumaker Simple Staff List <2.2.4 - Info Disclosure
CVSS 4.3
CVE-2023-52227
MEDIUM
MailerLite - WooCommerce <2.0.8 - Info Disclosure
CVSS 4.3
CVE-2023-52224
MEDIUM
Revolut Gateway for WooCommerce <4.9.7 - Info Disclosure
CVSS 4.3
CVE-2023-48273
MEDIUM
Preloader for Website < 1.2.2 - Unauthenticated Missing Authorization
CVSS 5.3
CVE-2023-52233
HIGH
Post SMTP < 2.8.6 - Missing Authorization
CVSS 8.6
CVE-2023-51682
MEDIUM
ibericode MC4WP < 4.9.9 - Missing Authorization
CVSS 5.3
Details
Vulnerabilities
8,401
Exploit Likelihood
High