Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5532

5532 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-37517 WordPress Spectra plugin <= 2.13.7 - Broken Access Control vulnerability — Spectra 4.3 Medium2024-11-01
CVE-2024-37926 WordPress WP Accessibility Helper (WAH) plugin <= 0.6.2.9 - Broken Access Control vulnerability — WP Accessibility Helper (WAH) 5.3 Medium2024-11-01
CVE-2024-37921 WordPress Chained Quiz plugin <= 1.3.2.8 - Broken Access Control vulnerability — Chained Quiz 5.3 Medium2024-11-01
CVE-2024-37929 WordPress User Activity Log Pro plugin <= 2.3.4 - Subscriber+ Multiple Broken Access Control vulnerability — User Activity Log Pro 6.3 Medium2024-11-01
CVE-2024-38690 WordPress iPanorama 360 plugin <= 1.8.3 - Broken Access Control vulnerability — iPanorama 360 WordPress Virtual Tour Builder 5.3 Medium2024-11-01
CVE-2024-38695 WordPress WP GoToWebinar plugin <= 15.6 - Broken Access Control vulnerability — WP GoToWebinar 4.3 Medium2024-11-01
CVE-2024-38702 WordPress Product Delivery Date for WooCommerce – Lite plugin <= 2.7.2 - Broken Access Control vulnerability — Product Delivery Date for WooCommerce – Lite 5.3 Medium2024-11-01
CVE-2024-38714 WordPress WP Fast Total Search <= 1.68.232 - Broken Access Control vulnerability — WP Fast Total Search 4.3 Medium2024-11-01
CVE-2024-38707 WordPress EmbedPress plugin <= 4.0.4 - Broken Access Control vulnerability — EmbedPress 6.3 Medium2024-11-01
CVE-2024-38719 WordPress Auto Featured Image plugin <= 4.1.2 - Broken Access Control vulnerability — Auto Featured Image (Auto Post Thumbnail) 4.3 Medium2024-11-01
CVE-2024-38721 WordPress EazyDocs plugin <= 2.5.0 - Broken Access Control vulnerability — EazyDocs 7.1 High2024-11-01
CVE-2024-38726 WordPress Product Designer plugin <= 1.0.33 - Arbitrary Content Deletion vulnerability — Product Designer 7.5 High2024-11-01
CVE-2024-38727 WordPress Seraphinite Post .DOCX Source plugin <= 2.16.9 - Broken Access Control vulnerability — Seraphinite Post .DOCX Source 4.3 Medium2024-11-01
CVE-2024-38733 WordPress Meks Video Importer plugin <= 1.0.12 - Broken Access Control vulnerability — Meks Video Importer 5.4 Medium2024-11-01
CVE-2024-38737 WordPress ReDi Restaurant Reservation plugin <= 24.0422 - Broken Access Control vulnerability — ReDi Restaurant Reservation 5.4 Medium2024-11-01
CVE-2024-38743 WordPress Plum: Spin Wheel & Email Pop-up plugin <= 2.0 - Broken Access Control vulnerability — Plum: Spin Wheel & Email Pop-up 5.3 Medium2024-11-01
CVE-2024-38740 WordPress Packlink PRO shipping module plugin <= 3.4.6 - Broken Access Control vulnerability — Packlink PRO shipping module 5.4 Medium2024-11-01
CVE-2024-38744 WordPress Plum: Spin Wheel & Email Pop-up plugin <= 2.0 - Broken Access Control to Unauth Stored XSS vulnerability — Plum: Spin Wheel & Email Pop-up 8.3 High2024-11-01
CVE-2024-38745 WordPress Wholesale Suite plugin <= 2.1.12 - Broken Access Control vulnerability — Wholesale Suite 5.3 Medium2024-11-01
CVE-2024-38748 WordPress EleForms plugin <= 2.9.9.9 - Broken Access Control vulnerability — EleForms 5.3 Medium2024-11-01
CVE-2024-38769 WordPress Arconix Shortcodes plugin <= 2.1.11 - Broken Access Control vulnerability — Arconix Shortcodes 5.3 Medium2024-11-01
CVE-2024-38771 WordPress Atarim plugin <= 4.0 - Broken Access Control vulnerability — Atarim 6.5 Medium2024-11-01
CVE-2024-38774 WordPress Security Optimizer plugin <= 1.5.0 - Broken Access Control vulnerability — SiteGround Security 5.4 Medium2024-11-01
CVE-2024-38783 WordPress Arconix FAQ plugin <= 1.9.4 - Broken Access Control vulnerability — Arconix FAQ 5.3 Medium2024-11-01
CVE-2024-38777 WordPress Titan Anti-spam & Security plugin <= 7.3.6 - Broken Access Control vulnerability — Titan Anti-spam & Security 6.5 Medium2024-11-01
CVE-2024-38792 WordPress ConveyThis Translate plugin <= 234 - Non-arbitrary Options Update vulnerability — Language Translate Widget for WordPress – ConveyThis 5.3 Medium2024-11-01
CVE-2024-38794 WordPress Custom Query Blocks plugin <= 5.2.0 - Broken Access Control vulnerability — Custom Query Blocks 5.3 Medium2024-11-01
CVE-2024-39625 WordPress Icegram Engage plugin <= 3.1.24 - Unauthenticated Message Duplication Vulnerability — Icegram 5.3 Medium2024-11-01
CVE-2024-39635 WordPress Youzify plugin <= 1.2.6 - Broken Access Control vulnerability — Youzify 5.4 Medium2024-11-01
CVE-2024-39640 WordPress Social Feed Gallery plugin <= 4.3.9 - Broken Access Control vulnerability — WP Social Feed Gallery 6.5 Medium2024-11-01

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5532 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.