The product does not perform an authorization check when an actor attempts to access a resource or perform an action.
8,402 vulnerabilities with CWE-862
CVE-2022-40702
MEDIUM
Advanced Local Pickup for WooCommerce < 1.5.2 - Missing Authorization
CVSS 5.4
CVE-2022-40203
MEDIUM
Advanced Dynamic Pricing for WooCommerce < 4.1.5 - Missing Authorization
CVSS 6.3
CVE-2022-38141
MEDIUM
Zorem Sales Report Email for WooCommerce <2.8 - Info Disclosure
CVSS 4.3
CVE-2022-36418
MEDIUM
Vagary Digital HREFLANG Tags Lite <2.0.0 - Info Disclosure
CVSS 6.5
CVE-2022-23180
MEDIUM
Contact Form & Lead Form Elementor Builder < 1.7.4 - Authenticated Missing Authorization
CVSS 4.3
CVE-2022-36352
MEDIUM
Profilegrid ProfileGrid - Info Disclosure
CVSS 6.3
CVE-2022-34344
MEDIUM
Wholesale Suite < 2.1.5 - Missing Authorization
CVSS 5.4
CVE-2022-3007
HIGH
Syska SW100 Smartwatch - Code Injection
CVSS 8.1
CVE-2022-4943
HIGH
miniOrange Google Authenticator < 5.6.5 - Unauthenticated Authorization Bypass via Plugin Settings
CVSS 7.5
CVE-2022-3622
MEDIUM
Blog2Social < 6.9.11 - Authenticated Authorization Bypass via Missing Capability Checks
CVSS 4.1
CVE-2022-36228
MEDIUM
Nokelock Smart padlock O1 <5.3.0 - Privilege Escalation
CVSS 6.5
CVE-2022-48452
MEDIUM
Android - Missing Authorization in Ifaa Service
CVSS 4.4
CVE-2022-43712
MEDIUM
GX Software XperienCentral <10.36.0 - CSRF
CVSS 6.5
CVE-2022-48491
MEDIUM
HUAWEI EMUI - Missing Authorization
CVSS 5.3
CVE-2022-46850
HIGH
Nabil Lemsieh Easy Media Replace <0.1.3 - Privilege Escalation
CVSS 8.6
CVE-2022-4950
HIGH
Cool Plugins WordPress Plugins < 2.4 - Authenticated Arbitrary Plugin Installation and Activation
CVSS 8.8
CVE-2022-4948
MEDIUM
FlyingPress <= 3.9.6 - Authenticated Authorization Bypass via AJAX Actions
CVSS 4.3
CVE-2022-48448
MEDIUM
Android - Missing Authorization Leading to Local Denial of Service
CVSS 5.5
CVE-2022-48447
MEDIUM
Android - Missing Authorization in Telephony Service
CVSS 5.5
CVE-2022-48446
MEDIUM
Android - Missing Authorization Leading to Local Denial of Service
CVSS 5.5
CVE-2022-48445
MEDIUM
Android - Missing Authorization in Telephony Service
CVSS 5.5
CVE-2022-48444
MEDIUM
Android - Missing Authorization in Telephony Service
CVSS 5.5
CVE-2022-48443
MEDIUM
Android - Missing Authorization in Telephony Service
CVSS 5.5
CVE-2022-48442
MEDIUM
Android - Missing Authorization in Dialer Service
CVSS 5.5
CVE-2022-48441
MEDIUM
Android - Missing Authorization in Dialer Service
CVSS 5.5
Details
Vulnerabilities
8,402
Exploit Likelihood
High