CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,402 vulnerabilities with CWE-862
CVE-2022-40702 MEDIUM
Advanced Local Pickup for WooCommerce < 1.5.2 - Missing Authorization
CVSS 5.4
CVE-2022-40203 MEDIUM
Advanced Dynamic Pricing for WooCommerce < 4.1.5 - Missing Authorization
CVSS 6.3
CVE-2022-38141 MEDIUM
Zorem Sales Report Email for WooCommerce <2.8 - Info Disclosure
CVSS 4.3
CVE-2022-36418 MEDIUM
Vagary Digital HREFLANG Tags Lite <2.0.0 - Info Disclosure
CVSS 6.5
CVE-2022-23180 MEDIUM
Contact Form & Lead Form Elementor Builder < 1.7.4 - Authenticated Missing Authorization
CVSS 4.3
CVE-2022-36352 MEDIUM
Profilegrid ProfileGrid - Info Disclosure
CVSS 6.3
CVE-2022-34344 MEDIUM
Wholesale Suite < 2.1.5 - Missing Authorization
CVSS 5.4
CVE-2022-3007 HIGH
Syska SW100 Smartwatch - Code Injection
CVSS 8.1
CVE-2022-4943 HIGH
miniOrange Google Authenticator < 5.6.5 - Unauthenticated Authorization Bypass via Plugin Settings
CVSS 7.5
CVE-2022-3622 MEDIUM
Blog2Social < 6.9.11 - Authenticated Authorization Bypass via Missing Capability Checks
CVSS 4.1
CVE-2022-36228 MEDIUM
Nokelock Smart padlock O1 <5.3.0 - Privilege Escalation
CVSS 6.5
CVE-2022-48452 MEDIUM
Android - Missing Authorization in Ifaa Service
CVSS 4.4
CVE-2022-43712 MEDIUM
GX Software XperienCentral <10.36.0 - CSRF
CVSS 6.5
CVE-2022-48491 MEDIUM
HUAWEI EMUI - Missing Authorization
CVSS 5.3
CVE-2022-46850 HIGH
Nabil Lemsieh Easy Media Replace <0.1.3 - Privilege Escalation
CVSS 8.6
CVE-2022-4950 HIGH
Cool Plugins WordPress Plugins < 2.4 - Authenticated Arbitrary Plugin Installation and Activation
CVSS 8.8
CVE-2022-4948 MEDIUM
FlyingPress <= 3.9.6 - Authenticated Authorization Bypass via AJAX Actions
CVSS 4.3
CVE-2022-48448 MEDIUM
Android - Missing Authorization Leading to Local Denial of Service
CVSS 5.5
CVE-2022-48447 MEDIUM
Android - Missing Authorization in Telephony Service
CVSS 5.5
CVE-2022-48446 MEDIUM
Android - Missing Authorization Leading to Local Denial of Service
CVSS 5.5
CVE-2022-48445 MEDIUM
Android - Missing Authorization in Telephony Service
CVSS 5.5
CVE-2022-48444 MEDIUM
Android - Missing Authorization in Telephony Service
CVSS 5.5
CVE-2022-48443 MEDIUM
Android - Missing Authorization in Telephony Service
CVSS 5.5
CVE-2022-48442 MEDIUM
Android - Missing Authorization in Dialer Service
CVSS 5.5
CVE-2022-48441 MEDIUM
Android - Missing Authorization in Dialer Service
CVSS 5.5
Details
Vulnerabilities 8,402
Exploit Likelihood High