Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,261 vulnerabilities with CWE-862

CVE-2025-13348 HIGH

ASUS Secure Delete Driver - Path Traversal

CVE-2025-15510 MEDIUM

NEX-Forms - Ultimate Forms Plugin for WordPress <= 9.1.8 - Unauthenticated Sensitive Data Exposure via Form Export

CVE-2025-68479 HIGH

Discourse < 3.5.4, 2025.11.2, 2025.12.1, 2026.1.0 - Missing Authorization in Subscription Endpoints

CVE-2025-15511 MEDIUM

Rupantorpay <2.0.0 - Info Disclosure

CVE-2025-14386 HIGH

Search Atlas SEO 2.4.4-2.5.12 - Authentication Bypass via Missing Capability Check

CVE-2025-14971 MEDIUM

Link Invoice Payment for WooCommerce <2.8.0 - Info Disclosure

CVE-2025-15516 MEDIUM

All-in-One Video Gallery <4.6.4 - Info Disclosure

CVE-2025-14843 MEDIUM

Wizit Gateway for WooCommerce - Unauthenticated RCE

CVE-2025-14629 MEDIUM

Alchemist Ajax Upload <1.1 - Info Disclosure

CVE-2025-14609 MEDIUM

Wise Analytics <1.1.9 - Info Disclosure

CVE-2025-52024 CRITICAL

Aptsys POS Platform Web Services < 2025-05-28 - Unauthenticated API Exposure via Internal Testing Tools

CVE-2025-70986 HIGH

RuoYi 4.8.2 - Unauthenticated Sensitive Data Exposure via selectDept Function

CVE-2025-70985 CRITICAL

RuoYi 4.8.2 - Unauthenticated Improper Access Control in Update Function

CVE-2025-70983 CRITICAL

SpringBlade 4.5.0 - Privilege Escalation via Incorrect Access Control in authRoutes

CVE-2025-14947 MEDIUM

All-in-One Video Gallery <4.6.4 - Info Disclosure

CVE-2025-13921 MEDIUM

weDocs <= 2.1.16 - Authenticated Arbitrary Documentation Post Modification

CVE-2025-69315 MEDIUM

NSquared Simply Schedule Appointments <1.6.9.15 - Info Disclosure

CVE-2025-69313 HIGH

WPXPO PostX <5.0.3 - Info Disclosure

CVE-2025-69311 HIGH

Broadstreet Ads <= 1.52.1 - Missing Authorization

CVE-2025-69300 MEDIUM

Leap13 Premium Addons for Elementor <4.11.63 - Info Disclosure

CVE-2025-69193 HIGH

e-plugins WP Membership <= 1.6.4 - Missing Authorization

CVE-2025-69192 HIGH

e-plugins Real Estate Pro <= 2.1.5 - Info Disclosure

CVE-2025-69191 HIGH

e-plugins ListingHub <= 1.2.7 - Missing Authorization

CVE-2025-69190 HIGH

Listihub <= 1.0.6 - Missing Authorization

CVE-2025-69188 HIGH

e-plugins fitness-trainer <= 1.7.1 - Info Disclosure

Previous Page 64 of 331 Next

Details

Vulnerabilities 8,261

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy