CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,401 vulnerabilities with CWE-862
CVE-2023-2783 MEDIUM
Mattermost 7.8.0-7.8.3 and 7.10.0 - Missing Authorization in Apps Framework Webhook
CVSS 4.3
CVE-2023-34165 MEDIUM
Huawei HarmonyOS AI Touch Save for Later - Unauthorized URI Access
CVSS 5.3
CVE-2023-21141 MEDIUM
Android - Local Information Disclosure via Developer Mode Trace Access
CVSS 5.5
CVE-2023-21123 HIGH
Android - Local Privilege Escalation via Missing Permission Check
CVSS 7.8
CVE-2023-21122 HIGH
Android - Local Privilege Escalation via Missing Permission Check
CVSS 7.8
CVE-2023-35149 MEDIUM
Jenkins Digital.ai App Management Publisher Plugin < 2.6 - Missing Authorization
CVSS 6.5
CVE-2023-3230 HIGH
fossbilling < 0.5.0 - Missing Authorization
CVSS 7.5
CVE-2023-2351 MEDIUM
WP Directory Kit <1.2.3 - Privilege Escalation
CVSS 6.5
CVE-2023-2284 MEDIUM
WP Activity Log Premium <4.5.0 - Info Disclosure
CVSS 4.3
CVE-2023-2261 MEDIUM
WP Activity Log <4.5.0 - Auth Bypass
CVSS 4.3
CVE-2023-2764 MEDIUM
Draw Attention <2.0.11 - Info Disclosure
CVSS 4.3
CVE-2023-2557 MEDIUM
WordPress Currency Switcher Professional <= 1.1.9 - Authenticated Arbitrary Data Modification
CVSS 4.3
CVE-2023-2556 MEDIUM
WPCS - WordPress Currency Switcher Professional <1.1.9 - Info Discl...
CVSS 4.3
CVE-2023-2555 MEDIUM
WPCS - WordPress Currency Switcher Professional <1.1.9 - Info Discl...
CVSS 4.3
CVE-2023-2414 MEDIUM
WordPress vcita <= 4.4.6 - Authenticated Arbitrary File Upload & Settings Modification
CVSS 5.4
CVE-2023-2280 MEDIUM
WP Directory Kit <1.2.2 - Info Disclosure
CVSS 6.5
CVE-2023-2275 MEDIUM
WooCommerce Multivendor Marketplace - WordPress <1.5.3 - Info Discl...
CVSS 4.3
CVE-2023-2189 MEDIUM
Elementor Addons <1.4.3 - Privilege Escalation
CVSS 4.3
CVE-2023-2086 MEDIUM
Essential Blocks <4.0.6 - Info Disclosure
CVSS 4.3
CVE-2023-2085 MEDIUM
Essential Blocks <4.0.6 - Info Disclosure
CVSS 4.3
CVE-2023-2084 MEDIUM
Essential Blocks <4.0.6 - Info Disclosure
CVSS 4.3
CVE-2023-2083 MEDIUM
Essential Blocks <4.0.6 - Info Disclosure
CVSS 4.3
CVE-2023-2066 MEDIUM
WordPress Bulletin plugin <3.6.0 - Auth Bypass
CVSS 6.3
CVE-2023-1843 MEDIUM
Metform Elementor Contact Form Builder <3.3.0 - CSRF
CVSS 6.5
CVE-2023-1375 MEDIUM
WP Fastest Cache <1.1.2 - Privilege Escalation
CVSS 4.3
Details
Vulnerabilities 8,401
Exploit Likelihood High