Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,211 vulnerabilities with CWE-862

CVE-2026-27046 MEDIUM

WordPress StoreCustomizer plugin <= 2.6.3 - Broken Access Control vulnerability

CVE-2026-25469 MEDIUM

WordPress ViaBill – WooCommerce plugin <= 1.1.53 - Settings Change vulnerability

CVE-2026-25462 MEDIUM

WordPress avalex plugin <= 3.1.3 - Broken Access Control vulnerability

CVE-2026-25460 MEDIUM

WordPress Ave Core plugin <= 2.9.1 - Broken Access Control vulnerability

CVE-2026-25456 HIGH

WordPress Automated FedEx live/manual rates with shipping labels plugin <= 5.1.8 - Broken Access Control vulnerability

CVE-2026-25455 MEDIUM

WordPress Product Slider for WooCommerce plugin <= 1.13.60 - Broken Access Control vulnerability

CVE-2026-25454 MEDIUM

WordPress The League theme <= 4.4.1 - Broken Access Control vulnerability

CVE-2026-25437 MEDIUM

WordPress GZSEO plugin <= 2.0.14 - Broken Access Control vulnerability

CVE-2026-25430 MEDIUM

WordPress Integration for Mailchimp and Contact Form 7, WPForms, Elementor, Ninja Forms plugin <= 1.2.2 - Broken Access Control vulnerability

CVE-2026-25401 HIGH

WordPress WPCargo Track & Trace plugin <= 8.0.2 - Broken Access Control vulnerability

CVE-2026-25398 MEDIUM

WordPress Vertex Addons for Elementor plugin <= 1.6.4 - Broken Access Control vulnerability

CVE-2026-25396 HIGH

WordPress Commerce Coinbase For WooCommerce plugin <= 1.6.6 - Broken Access Control vulnerability

CVE-2026-25390 MEDIUM

WordPress New User Approve plugin <= 3.2.3 - Broken Access Control vulnerability

CVE-2026-25365 MEDIUM

WordPress Kargo Takip plugin < 0.2.4 - Broken Access Control vulnerability

CVE-2026-25327 MEDIUM

WordPress Five Star Restaurant Reservations plugin <= 2.7.9 - Broken Access Control vulnerability

CVE-2026-25317 HIGH

WordPress Print Invoice & Delivery Notes for WooCommerce plugin <= 5.9.0 - Broken Access Control vulnerability

CVE-2026-25309 HIGH

WordPress PublishPress Authors plugin <= 4.10.1 - Broken Access Control vulnerability

CVE-2026-25034 MEDIUM

WordPress KiviCare plugin <= 3.6.16 - Broken Access Control vulnerability

CVE-2026-25026 HIGH

WordPress Team plugin <= 5.0.11 - Broken Access Control vulnerability

CVE-2026-25009 MEDIUM

WordPress Education Zone theme <= 1.3.8 - Broken Access Control vulnerability

CVE-2026-24987 MEDIUM

WordPress WP System Log plugin <= 1.2.7 - Broken Access Control vulnerability

CVE-2026-24972 MEDIUM

WordPress Elated Listing plugin <= 1.4 - Broken Access Control vulnerability

CVE-2026-24382 HIGH

WordPress News Magazine X theme <= 1.2.50 - Broken Access Control vulnerability

CVE-2026-24376 MEDIUM

WordPress WPVulnerability plugin <= 4.2.1 - Broken Access Control vulnerability

CVE-2026-24369 HIGH

WordPress The Grid plugin < 2.8.0 - Broken Access Control vulnerability

Previous Page 32 of 329 Next

Details

Vulnerabilities 8,211

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy