Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5532

5532 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-37218 WordPress Page Builder Sandwich <= 5.1.0 - Broken Access Control vulnerability — Page Builder Sandwich – Front-End Page Builder 4.3 Medium2024-11-01
CVE-2024-37220 WordPress Optinly plugin <= 1.0.18 - Broken Access Control vulnerability — Optinly 5.3 Medium2024-11-01
CVE-2024-37226 WordPress Kanban Boards for WordPress plugin <= 2.5.21 - Broken Access Control vulnerability — Kanban Boards for WordPress 5.3 Medium2024-11-01
CVE-2024-37232 WordPress Hercules Core plugin <= 6.5 - Subscriber+ Arbitrary Settings Change/Access vulnerability — Hercules Core 8.8 High2024-11-01
CVE-2024-37254 WordPress WP File Manager plugin <= 7.2.7 - Broken Access Control vulnerability — File Manager 4.3 Medium2024-11-01
CVE-2024-37255 WordPress ElementsKit Lite plugin <= 3.1.4 - Unauthenticated Broken Access Control vulnerability — ElementsKit Elementor addons Lite 5.3 Medium2024-11-01
CVE-2024-37269 WordPress Masterstudy Elementor Widgets plugin <= 1.2.2 - Unauthenticated Broken Access Control vulnerability — Masterstudy Elementor Widgets 5.3 Medium2024-11-01
CVE-2024-37276 WordPress Featured Image from URL (FIFU) plugin <= 4.8.1 - Broken Access Control vulnerability — Featured Image from URL 5.3 Medium2024-11-01
CVE-2024-37415 WordPress E2Pdf plugin <= 1.20.27 - Broken Access Control vulnerability — e2pdf 5.4 Medium2024-11-01
CVE-2024-37411 WordPress Progress Planner plugin <= 0.9.1 - Broken Access Control vulnerability — Progress Planner 5.3 Medium2024-11-01
CVE-2024-37427 WordPress Timetics plugin <= 1.0.21 - Broken Access Control vulnerability — Timetics 5.3 Medium2024-11-01
CVE-2024-37425 WordPress Newspack Blocks plugin <= 3.0.8 - Broken Access Control vulnerability — Newspack Blocks 5.4 Medium2024-11-01
CVE-2024-37439 WordPress Uncanny Toolkit Pro for LearnDash plugin < 4.1.4.1 - Subscriber+ Arbitrary Post/Page Duplication vulnerability — Uncanny Toolkit Pro for LearnDash 5.4 Medium2024-11-01
CVE-2024-37443 WordPress WP Job Manager plugin <= 2.1.0 - Broken Access Control vulnerability — WP Job Manager - Resume Manager 4.3 Medium2024-11-01
CVE-2024-37440 WordPress Church Admin plugin <= 4.4.4 - Broken Access Control vulnerability — Church Admin 4.3 Medium2024-11-01
CVE-2024-37444 WordPress Defender plugin <= 4.7.1 - Broken Access Control vulnerability — Defender Security 5.3 Medium2024-11-01
CVE-2024-37453 WordPress ProfileGrid – User Profiles, Groups and Communities plugin <= 5.8.7 - Broken Access Control vulnerability — ProfileGrid 4.3 Medium2024-11-01
CVE-2024-37456 WordPress Simple Newsletter Plugin – Noptin plugin <= 3.4.2 - Broken Access Control vulnerability — Noptin 5.3 Medium2024-11-01
CVE-2024-37468 WordPress Newsmatic theme <= 1.3.1 - Broken Access Control vulnerability — Newsmatic 5.3 Medium2024-11-01
CVE-2024-37463 WordPress CRM Perks Forms plugin <= 1.1.5 - Broken Access Control vulnerability — CRM Perks Forms 5.3 Medium2024-11-01
CVE-2024-37470 WordPress Woffice Core plugin <= 5.4.8 - Unauthenticated Broken Access Control vulnerability — Woffice Core 8.2 High2024-11-01
CVE-2024-37475 WordPress Newspack Newsletters plugin <= 2.13.2 - Broken Access Control vulnerability — Newspack Newsletters 5.3 Medium2024-11-01
CVE-2024-37477 WordPress Newspack Content Converter plugin <= 0.1.5 - Broken Access Control vulnerability — Newspack Content Converter 6.5 Medium2024-11-01
CVE-2024-37482 WordPress The Post Grid plugin <= 7.7.4 - Broken Access Control vulnerability — The Post Grid 4.3 Medium2024-11-01
CVE-2024-37481 WordPress The Post Grid plugin <= 7.7.4 - Broken Access Control vulnerability — The Post Grid 6.5 Medium2024-11-01
CVE-2024-37483 WordPress The Post Grid plugin <= 7.7.4 - Broken Access Control vulnerability — The Post Grid 5.4 Medium2024-11-01
CVE-2024-37506 WordPress Donation Forms by Charitable plugin <= 1.8.1.7 - Broken Access Control vulnerability — Charitable 5.3 Medium2024-11-01
CVE-2024-37505 WordPress Business One Page theme <= 1.2.9 - Broken Access Control on Notice Dismissal vulnerability — Business One Page 4.3 Medium2024-11-01
CVE-2024-37510 WordPress Donation Forms by Charitable plugin <= 1.8.1.7 - Broken Access Control vulnerability — Charitable 6.5 Medium2024-11-01
CVE-2024-37516 WordPress Featured Image from URL (FIFU) plugin <= 4.8.2 - Broken Access Control vulnerability — Featured Image from URL 6.3 Medium2024-11-01

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5532 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.