CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,280 vulnerabilities with CWE-862
CVE-2025-66068 MEDIUM
InstaWP InstaWP Connect <0.1.1.9 - Info Disclosure
CVSS 6.5
CVE-2025-66054 HIGH
ThimPress LearnPress <4.2.9.4 - Info Disclosure
CVSS 7.5
CVE-2025-64378 HIGH
CridioStudio ListingPro <2.9.10 - Auth Bypass
CVSS 7.1
CVE-2025-64375 MEDIUM
WP Social Ninja <= 3.20.1 - Missing Authorization
CVSS 6.5
CVE-2025-64273 MEDIUM
GetResponse Email marketing <1.5.3 - Info Disclosure
CVSS 6.5
CVE-2025-64268 HIGH
Arraytics Timetics <1.0.45 - Info Disclosure
CVSS 7.5
CVE-2025-64222 HIGH
WooCommerce Recover Abandoned Cart <24.6.0 - Info Disclosure
CVSS 7.5
CVE-2025-64214 HIGH
StylemixThemes MasterStudy LMS Pro - Info Disclosure
CVSS 7.5
CVE-2025-64209 HIGH
StylemixThemes Masterstudy <4.8.122 - Info Disclosure
CVSS 7.5
CVE-2025-64192 MEDIUM
8theme XStore < 9.6 - Missing Authorization
CVSS 6.3
CVE-2025-63039 MEDIUM
CridioStudio ListingPro <2.9.9 - RCE
CVSS 6.5
CVE-2025-60088 MEDIUM
Saleswonder Team: Tobias WebinarIgnition - Privilege Escalation
CVSS 6.5
CVE-2025-60086 HIGH
WP Voting Contest <= 5.8 - Missing Authorization
CVSS 7.5
CVE-2025-60079 HIGH
bPlugins Parallax Section <1.0.10 - Info Disclosure
CVSS 7.1
CVE-2025-60077 HIGH
YayCommerce YayPricing <3.5.4 - Info Disclosure
CVSS 7.5
CVE-2025-60045 HIGH
ThemeAtelier IDonatePro <2.1.11 - Info Disclosure
CVSS 7.5
CVE-2025-58938 HIGH
ThemeAtelier IDonatePro <2.1.9 - RCE
CVSS 7.5
CVE-2025-58877 HIGH
Javo Core <= 3.0.0.529 - Unauthenticated Arbitrary Content Deletion
CVSS 7.5
CVE-2025-54751 HIGH
WPXPO PostX <4.1.36 - Info Disclosure
CVSS 7.1
CVE-2025-54745 MEDIUM
miniOrange's Google Authenticator <6.1.1 - RCE
CVSS 6.5
CVE-2025-54743 MEDIUM
mkscripts Download After Email 2.1.5-2.1.6 - Missing Authorization
CVSS 5.8
CVE-2025-54741 MEDIUM
Tyler Moore Super Blank <1.2.0 - Info Disclosure
CVSS 6.5
CVE-2025-49902 MEDIUM
A WP Life Login Page Customizer - Info Disclosure
CVSS 6.5
CVE-2025-49041 MEDIUM
The African Boss Get Cash <3.2.3 - Info Disclosure
CVSS 6.5
CVE-2025-13498 MEDIUM
WordPress Download Manager <3.3.32 - Info Disclosure
CVSS 4.3
Details
Vulnerabilities 8,280
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits