Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-862

CWE-862

High likelihood

Missing Authorization

Parent: CWE-285 - Improper Authorization

The product does not perform an authorization check when an actor attempts to access a resource or perform an action.

8,316 vulnerabilities with CWE-862

CVE-2025-48575 HIGH

CertInstaller - Privilege Escalation

CVE-2025-32319 MEDIUM

Android - Missing Authorization in RemotePrintService

CVE-2025-14117 MEDIUM

fit2cloud Halo 2.21.10 - Cross-Site Request Forgery

CVE-2025-13666 MEDIUM

Helloprint < 2.1.2 - Unauthenticated Missing Authorization via REST API Endpoint

CVE-2025-13358 MEDIUM

WordPress Accessibility Plugin <1.0.0 - Privilege Escalation

CVE-2025-13309 MEDIUM

CodeConfig Accessibility < 1.0.2 - Authenticated Authorization Bypass via Settings Modification

CVE-2025-12721 MEDIUM

g-FFL Cockpit plugin <1.7.2 - Info Disclosure

CVE-2025-12577 MEDIUM

Listar - Directory Listing & Classifieds WordPress Plugin <3.0.0 - ...

CVE-2025-12574 MEDIUM

Listar - Directory Listing & Classifieds WordPress Plugin <= 3.0.0 - Unauthorized Data Deletion via REST API Endpoint

CVE-2025-12091 MEDIUM

Search, Filters & Merchandising for WooCommerce <3.0.63 - Info Disc...

CVE-2025-65036 HIGH

XWiki Remote Macros < 1.27.1 - Remote Code Execution via Unauthorized Velocity Execution

CVE-2025-13620 MEDIUM

Wp Social Login & Register Social Counter <3.1.3 - Auth Bypass

CVE-2025-12876 MEDIUM

Projectopia - WordPress Project Management <5.1.19 - Info Disclosure

CVE-2025-12355 MEDIUM

Payaza plugin <0.3.8 - Info Disclosure

CVE-2025-12354 MEDIUM

Live CSS Preview <2.0.0 - Info Disclosure

CVE-2025-12093 MEDIUM

Voidek Employee Portal <1.0.6 - Auth Bypass

CVE-2025-13528 MEDIUM

WordPress Feedback Modal <1.0.1 - Info Disclosure

CVE-2025-12370 MEDIUM

Takeads WordPress <1.0.13 - Auth Bypass

CVE-2025-12165 MEDIUM

Webcake - Landing Page Builder <1.1 - Info Disclosure

CVE-2025-12133 MEDIUM

EPROLO Dropshipping <2.3.1 - Info Disclosure

CVE-2025-13313 CRITICAL

CRM Memberships <2.5 - Privilege Escalation

CVE-2025-13312 MEDIUM

WordPress CRM Memberships <2.5 - Info Disclosure

CVE-2025-54159 HIGH

Synology BeeDrive < 1.4.2-13960 - Unauthenticated Arbitrary File Deletion

CVE-2025-2848 MEDIUM

Synology Mail Server < 1.7.6-10676 - Authenticated Missing Authorization

CVE-2025-12826 MEDIUM

Custom Post Type UI <1.18.0 - Auth Bypass

Previous Page 88 of 333 Next

Details

Vulnerabilities 8,316

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy