Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,133 vulnerabilities with CWE-862

CVE-2026-53439 MEDIUM

Jenkins - Missing Authorization

CVE-2026-53438 MEDIUM

Jenkins - Missing Authorization

CVE-2026-11852 MEDIUM

Debusine 0.2.0-0.14.5 - Unauthenticated Artifact Relationship Manipulation

CVE-2026-26237 HIGH

QNAP QuMagie < 2.9.0 - Missing Authorization

CVE-2026-46518 HIGH

OpenEMR: Stored XSS in prescription CSS/HTML print view via patient demographics

CVE-2026-49956 MEDIUM

Hermes WebUI < 0.51.269 Profile Isolation Bypass via sessions search

CVE-2026-47281 CRITICAL

Visual Studio Code Elevation of Privilege Vulnerability

CVE-2026-49948 HIGH

Mem0 0.2.8 Missing Authorization via POST /configure Endpoint

CVE-2026-49741 HIGH

TYPO3 CMS - Privilege Escalation & SQL Injection in Form Framework

CVE-2026-47352 MEDIUM

TYPO3 CMS - Broken Access Control in Backend API

CVE-2026-47351 MEDIUM

TYPO3 CMS - Broken Access Control in Clipboard

CVE-2026-47350 MEDIUM

TYPO3 CMS - Broken Access Control in DataHandler

CVE-2026-47349 MEDIUM

TYPO3 CMS - Broken Access Control in Recycler

CVE-2026-47346 HIGH

TYPO3 CMS - Broken Access Control in Form Framework

CVE-2026-47343 HIGH

TYPO3 CMS - Destructive Actions on File Mount Folders

CVE-2026-11607 HIGH

TYPO3 CMS - Broken Access Control in Form Framework

CVE-2026-4058 MEDIUM

weDevs User Frontend <= 4.3.2 - Missing Authorization

CVE-2026-4986 MEDIUM

WPForms Lite < 1.10.0.5 – Unauthenticated PayPal Webhook Forgery

CVE-2026-26236 HIGH

QuMagie < 2.9.0 - Missing Authorization

CVE-2026-44754 MEDIUM

Missing caller identification check-in for ODP Data Replication APIs

CVE-2026-44751 HIGH

Missing Authorization check in Application Server ABAP of SAP NetWeaver and ABAP Platform

CVE-2026-44750 MEDIUM

Missing Authorization check in SAP MDG (Review Match Groups Application)

CVE-2026-10787 MEDIUM

Devolutions Server - Missing Authorization

CVE-2026-39910 CRITICAL

STACKIT IaaS API Privilege Escalation via Service Account Attachment

CVE-2026-46444 HIGH

Flowise: Vector Store No Permission Checks

Previous Page 4 of 326 Next

Details

Vulnerabilities 8,133

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy