Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,230 vulnerabilities with CWE-862

CVE-2026-0998 MEDIUM

Mattermost 11.1.x-11.1.2 - Auth Bypass

CVE-2026-0929 MEDIUM

RegistrationMagic <6.0.7.2 - Privilege Escalation

CVE-2026-26368 HIGH

eNet SMART HOME 2.2.1/2.3.1 - Privilege Escalation

CVE-2026-26367 HIGH

eNet SMART HOME 2.2.1/2.3.1 - Privilege Escalation

CVE-2026-2312 MEDIUM

Media Library Folders <8.3.6 - Privilege Escalation

CVE-2026-1254 MEDIUM

Modula Image Gallery - Photo Grid & Video Gallery <2.13.6 - Auth By...

CVE-2026-2022 MEDIUM

WordPress Smart Forms <2.6.99 - Info Disclosure

CVE-2026-1944 MEDIUM

CallbackKiller service widget <1.2 - Info Disclosure

CVE-2026-1303 MEDIUM

MailChimp Campaigns <3.2.4 - Privilege Escalation

CVE-2026-0727 MEDIUM

Accordion Slider <1.4.5 - Auth Bypass

CVE-2026-1932 MEDIUM

Bookr plugin <1.0.2 - Info Disclosure

CVE-2026-0692 HIGH

BlueSnap Payment Gateway <3.3.0 - Auth Bypass

CVE-2026-26268 HIGH

Cursor < 2.5 - Sandbox Escape and Remote Code Execution via .git Configuration Injection

CVE-2026-25531 MEDIUM

kanboard < 1.2.50 - Authenticated Missing Authorization in Task Duplication Endpoint

CVE-2026-25768 MEDIUM

LavinMQ < 2.6.6 - Authenticated Unauthorized Metadata Access

CVE-2026-1104 HIGH

FastDup <= 2.7.1 - Authenticated Backup Creation/Download via REST API

CVE-2026-1671 MEDIUM

WordPress Activity Log <1.2.8 - Info Disclosure

CVE-2026-1537 MEDIUM

LatePoint - Calendar Booking Plugin - Info Disclosure

CVE-2026-20626 HIGH

macOS <15.7.4-iPadOS <26.3-visionOS <26.3 - Privilege Escalation

CVE-2026-25633 MEDIUM

Statamic CMS < 5.73.6 - Missing Authorization for Asset Download

CVE-2026-1833 MEDIUM

WaMate Confirm - Order Confirmation <2.0.1 - Auth Bypass

CVE-2026-1786 MEDIUM

Twitter posts to Blog plugin <1.11.25 - Info Disclosure

CVE-2026-1748 MEDIUM

Invoct - PDF Invoices & Billing for WooCommerce <1.7 - Info Disclosure

CVE-2026-25609 MEDIUM

MongoDB 7.0.0-7.0.28 - Missing Authorization via Profile Command Filter Alteration

CVE-2026-21743 HIGH

Fortinet FortiAuthenticator 6.3.0-6.6.6 - Missing Authorization for Local User Modification via File Upload

Previous Page 49 of 330 Next

Details

Vulnerabilities 8,230

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy