Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,261 vulnerabilities with CWE-862

CVE-2025-68003 MEDIUM

renatoatshown Shown Connector <= 1.2.10 - Info Disclosure

CVE-2025-67967 HIGH

e-plugins Lawyer Directory <= 1.3.3 - Missing Authorization

CVE-2025-67958 MEDIUM

TaxCloud for WooCommerce <8.3.8 - RCE

CVE-2025-67956 HIGH

User Registration <= 4.4.6 - Missing Authorization

CVE-2025-67942 MEDIUM

Peach Payments Gateway <3.3.6 - RCE

CVE-2025-67939 MEDIUM

Tickera <= 3.5.6.2 - Missing Authorization

CVE-2025-66143 MEDIUM

Crumber <= 1.0.10 - Missing Authorization

CVE-2025-66142 MEDIUM

Merkulove Comparimager for Elementor <= 1.0.1 - Info Disclosure

CVE-2025-66141 MEDIUM

Merkulove Scroller <2.0.2 - Info Disclosure

CVE-2025-66140 MEDIUM

Merkulove Uper for Elementor <1.0.6 - Info Disclosure

CVE-2025-66139 MEDIUM

Merkulove Audier For Elementor <1.0.10 - RCE

CVE-2025-66138 MEDIUM

Merkulove Motionger for Elementor <2.0.5 - RCE

CVE-2025-66137 MEDIUM

Merkulove Searcher for Elementor <1.0.4 - RCE

CVE-2025-66136 MEDIUM

Merkulove Carter for Elementor <1.0.3 - Info Disclosure

CVE-2025-66135 MEDIUM

Merkulove Imager for Elementor <2.0.5 - Info Disclosure

CVE-2025-63018 MEDIUM

wproyal Bard <= 2.229 - Missing Authorization

CVE-2025-62754 MEDIUM

bKash for WC <3.1.0 - Privilege Escalation

CVE-2025-62106 MEDIUM

Mario Peshev WP-CRM System <3.4.5 - Info Disclosure

CVE-2025-5805 MEDIUM

Ninetheme Electron <= 1.8.2 - Missing Authorization

CVE-2025-54002 MEDIUM

Jthemes xSmart <= 1.2.9.4 - Missing Authorization

CVE-2025-49375 MEDIUM

cozythemes HomeLancer <1.0.2 - Info Disclosure

CVE-2025-65098 HIGH

typebot < 3.13.2 - Unauthenticated Credential Theft via Malicious Typebot Preview

CVE-2025-15347 HIGH

The Creator LMS - Privilege Escalation

CVE-2025-15043 MEDIUM

The Events Calendar <6.15.13 - Privilege Escalation

CVE-2025-14798 MEDIUM

LearnPress - WordPress LMS Plugin <4.3.2.4 - Info Disclosure

Previous Page 66 of 331 Next

Details

Vulnerabilities 8,261

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy