CWE-862 (授权机制缺失) — Vulnerability Class 5532

5532 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2023-35052	WordPress Directorist plugin <= 7.5.4 - Arbitrary Content Deletion vulnerability — Directorist	4.3	Medium	2024-12-13
CVE-2023-35777	WordPress The Events Calendar plugin <= 6.1.2.2 - Broken Access Control vulnerability — The Events Calendar	5.3	Medium	2024-12-13
CVE-2023-35051	WordPress Contact Forms by Cimatti plugin <= 1.5.7 - Broken Access Control vulnerability — Contact Forms by Cimatti	5.4	Medium	2024-12-13
CVE-2023-35046	WordPress Dynamic Visibility for Elementor plugin <= 5.0.5 - Broken Access Control vulnerability — Dynamic Visibility for Elementor	5.4	Medium	2024-12-13
CVE-2023-35037	WordPress Surfer plugin <= 1.3.2.357 - Broken Access Control vulnerability — Surfer	7.6	High	2024-12-13
CVE-2023-34387	WordPress Constant Contact Forms plugin <= 2.0.3 - Broken Access Control vulnerability — Constant Contact Forms	4.3	Medium	2024-12-13
CVE-2023-34376	WordPress Change WooCommerce Add To Cart Button Text plugin <= 1.3 - Broken Access Control vulnerability — Change WooCommerce Add To Cart Button Text	5.4	Medium	2024-12-13
CVE-2023-34381	WordPress Zippy plugin <= 1.6.2 - Broken Access Control vulnerability — Zippy	5.3	Medium	2024-12-13
CVE-2023-34014	WordPress Grid Plus plugin <= 1.3.2 - Broken Access Control vulnerability — Grid Plus	5.4	Medium	2024-12-13
CVE-2023-34019	WordPress Uncanny Toolkit for LearnDash plugin <= 3.6.4.3 - Broken Access Control vulnerability — Uncanny Toolkit for LearnDash	6.5	Medium	2024-12-13
CVE-2023-34009	WordPress Social Media Share Buttons & Social Sharing Icons plugin <= 2.8.1 - Broken Access Control + CSRF — Social Media & Share Icons	4.3	Medium	2024-12-13
CVE-2023-33998	WordPress Easy Social Icons plugin <= 3.2.5 - Broken Access Control vulnerability — Easy Social Icons	4.3	Medium	2024-12-13
CVE-2023-33996	WordPress Spam protection, AntiSpam, FireWall by CleanTalk plugin <= 6.10 - Broken Access Control vulnerability — Spam protection, AntiSpam, FireWall by CleanTalk	8.8	High	2024-12-13
CVE-2023-33995	WordPress Photo Gallery by 10Web plugin <= 1.8.15 - Broken Access Control vulnerability — Photo Gallery by 10Web	4.3	Medium	2024-12-13
CVE-2023-33994	WordPress Slimstat Analytics plugin <= 5.0.5.1 - Broken Access Control vulnerability — Slimstat Analytics	6.5	Medium	2024-12-13
CVE-2023-33928	WordPress WordPress Backup & Migration plugin <= 1.4.0 - Broken Access Control vulnerability — WordPress Backup & Migration	4.3	Medium	2024-12-13
CVE-2023-33324	WordPress Easy Captcha plugin <= 1.0 - Broken Access Control vulnerability — Easy Captcha	6.5	Medium	2024-12-13
CVE-2023-33215	WordPress Taggbox plugin <= 3.3 - Broken Access Control vulnerability — Taggbox	5.4	Medium	2024-12-13
CVE-2023-32798	WordPress Simple Page Ordering plugin <= 2.5.0 - Broken Access Control vulnerability — Simple Page Ordering	5.3	Medium	2024-12-13
CVE-2023-32963	WordPress Predictive Search for WooCommerce plugin <= 5.8.0 - Broken Access Control vulnerability — WooCommerce Predictive Search	5.3	Medium	2024-12-13
CVE-2023-32599	WordPress reCAPTCHA for all plugin <= 1.22 - Broken Access Control vulnerability — reCAPTCHA for all	4.3	Medium	2024-12-13
CVE-2023-32601	WordPress Booking Ultra Pro Appointments Booking Calendar Plugin plugin <= 1.1.12 - Broken Access Control vulnerability — Booking Ultra Pro	5.4	Medium	2024-12-13
CVE-2023-32593	WordPress GS Pins for Pinterest plugin <= 1.6.7 - Broken Access Control vulnerability — GS Pins for Pinterest	5.4	Medium	2024-12-13
CVE-2023-32585	WordPress Portfolio Gallery – Responsive Image Gallery plugin <= 1.4.6 - Broken Access Control vulnerability — Portfolio Gallery – Responsive Image Gallery	7.5	High	2024-12-13
CVE-2023-32586	WordPress SoundCloud Is Gold plugin <= 2.5.1 - Broken Access Control vulnerability — Soundcloud Is Gold	4.3	Medium	2024-12-13
CVE-2023-32581	WordPress WP-Chatbot for Messenger plugin <= 4.7 - Broken Access Control — WP-Chatbot for Messenger	5.4	Medium	2024-12-13
CVE-2023-32574	WordPress Injection Guard plugin <= 1.2.1 - Broken Access Control vulnerability — Injection Guard	4.3	Medium	2024-12-13
CVE-2023-32519	WordPress WCP Contact Form plugin <= 3.1.0 - Broken Access Control vulnerability — WCP Contact Form	4.3	Medium	2024-12-13
CVE-2023-32520	WordPress WCP Contact Form plugin <= 3.1.0 - Broken Access Control vulnerability — WCP Contact Form	7.5	High	2024-12-13
CVE-2023-32506	WordPress Link Whisper Free plugin <= 0.6.3 - Unauthenticated Broken Access Control vulnerability — Link Whisper Free	6.5	Medium	2024-12-13

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5532 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-862 (授权机制缺失) — Vulnerability Class 5532