The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
8,401 vulnerabilities with CWE-862
CVE-2023-2783
MEDIUM
Mattermost 7.8.0-7.8.3 and 7.10.0 - Missing Authorization in Apps Framework Webhook
CVSS 4.3
CVE-2023-34165
MEDIUM
Huawei HarmonyOS AI Touch Save for Later - Unauthorized URI Access
CVSS 5.3
CVE-2023-21141
MEDIUM
Android - Local Information Disclosure via Developer Mode Trace Access
CVSS 5.5
CVE-2023-21123
HIGH
Android - Local Privilege Escalation via Missing Permission Check
CVSS 7.8
CVE-2023-21122
HIGH
Android - Local Privilege Escalation via Missing Permission Check
CVSS 7.8
CVE-2023-35149
MEDIUM
Jenkins Digital.ai App Management Publisher Plugin < 2.6 - Missing Authorization
CVSS 6.5
CVE-2023-3230
HIGH
fossbilling < 0.5.0 - Missing Authorization
CVSS 7.5
CVE-2023-2351
MEDIUM
WP Directory Kit <1.2.3 - Privilege Escalation
CVSS 6.5
CVE-2023-2284
MEDIUM
WP Activity Log Premium <4.5.0 - Info Disclosure
CVSS 4.3
CVE-2023-2261
MEDIUM
WP Activity Log <4.5.0 - Auth Bypass
CVSS 4.3
CVE-2023-2764
MEDIUM
Draw Attention <2.0.11 - Info Disclosure
CVSS 4.3
CVE-2023-2557
MEDIUM
WordPress Currency Switcher Professional <= 1.1.9 - Authenticated Arbitrary Data Modification
CVSS 4.3
CVE-2023-2556
MEDIUM
WPCS - WordPress Currency Switcher Professional <1.1.9 - Info Discl...
CVSS 4.3
CVE-2023-2555
MEDIUM
WPCS - WordPress Currency Switcher Professional <1.1.9 - Info Discl...
CVSS 4.3
CVE-2023-2414
MEDIUM
WordPress vcita <= 4.4.6 - Authenticated Arbitrary File Upload & Settings Modification
CVSS 5.4
CVE-2023-2280
MEDIUM
WP Directory Kit <1.2.2 - Info Disclosure
CVSS 6.5
CVE-2023-2275
MEDIUM
WooCommerce Multivendor Marketplace - WordPress <1.5.3 - Info Discl...
CVSS 4.3
CVE-2023-2189
MEDIUM
Elementor Addons <1.4.3 - Privilege Escalation
CVSS 4.3
CVE-2023-2086
MEDIUM
Essential Blocks <4.0.6 - Info Disclosure
CVSS 4.3
CVE-2023-2085
MEDIUM
Essential Blocks <4.0.6 - Info Disclosure
CVSS 4.3
CVE-2023-2084
MEDIUM
Essential Blocks <4.0.6 - Info Disclosure
CVSS 4.3
CVE-2023-2083
MEDIUM
Essential Blocks <4.0.6 - Info Disclosure
CVSS 4.3
CVE-2023-2066
MEDIUM
WordPress Bulletin plugin <3.6.0 - Auth Bypass
CVSS 6.3
CVE-2023-1843
MEDIUM
Metform Elementor Contact Form Builder <3.3.0 - CSRF
CVSS 6.5
CVE-2023-1375
MEDIUM
WP Fastest Cache <1.1.2 - Privilege Escalation
CVSS 4.3
Details
Vulnerabilities
8,401
Exploit Likelihood
High