Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5532

5532 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-43974 WordPress ReviveNews theme <= 1.0.2 - Broken Access Control vulnerability — ReviveNews 6.5 Medium2024-11-01
CVE-2024-43980 WordPress FotaWP theme <= 1.4.1 - Broken Access Control vulnerability — Fota WP 6.5 Medium2024-11-01
CVE-2024-43981 WordPress GeoDirectory plugin <= 2.3.70 - Broken Access Control vulnerability — GeoDirectory 4.3 Medium2024-11-01
CVE-2024-43982 WordPress Login As Users plugin <= 1.4.3 - Broken Access Control to Account Takeover vulnerability — Login As Users 8.8 High2024-11-01
CVE-2024-43998 WordPress Blogpoet theme <= 1.0.3 - Broken Access Control vulnerability — Blogpoet 6.5 Medium2024-11-01
CVE-2024-44006 WordPress WooCommerce Multilingual & Multicurrency plugin <= 5.3.7 - Broken Access Control vulnerability — WooCommerce Multilingual & Multicurrency 4.3 Medium2024-11-01
CVE-2024-44019 WordPress Contact Form 7 Campaign Monitor Extension plugin <= 0.4.67 - Arbitrary File Deletion vulnerability — Contact Form 7 Campaign Monitor Extension 5.3 Medium2024-11-01
CVE-2024-44020 WordPress WP Free SSL plugin <= 1.2.6 - Broken Access Control vulnerability — WP Free SSL – Free SSL Certificate for WordPress and force HTTPS 4.3 Medium2024-11-01
CVE-2024-44021 WordPress Truepush plugin <= 1.0.8 - Broken Access Control vulnerability — Truepush 5.4 Medium2024-11-01
CVE-2024-44031 WordPress JoomSport plugin <= 5.6.3 - Broken Access Control vulnerability — JoomSport 4.3 Medium2024-11-01
CVE-2024-44052 WordPress HelloAsso plugin <= 1.1.10 - Broken Access Control vulnerability — HelloAsso 4.3 Medium2024-11-01
CVE-2024-47308 WordPress Templately plugin <= 3.1.2 - Broken Access Control vulnerability — Templately 6.5 Medium2024-11-01
CVE-2024-47317 WordPress Ads by WPQuads plugin <= 2.0.84 - Broken Access Control vulnerability — Ads by WPQuads 4.3 Medium2024-11-01
CVE-2024-47318 WordPress PWA for WP & AMP plugin <= 1.7.72 - Broken Access Control vulnerability — PWA for WP & AMP 4.3 Medium2024-11-01
CVE-2024-47321 WordPress WP Datepicker plugin <= 2.1.1 - Broken Access Control vulnerability — WP Datepicker 6.5 Medium2024-11-01
CVE-2024-47358 WordPress Popup Maker plugin <= 1.19.2 - Broken Access Control vulnerability — Popup Maker 5.3 Medium2024-11-01
CVE-2024-47361 WordPress Elementor Addon Elements plugin <= 1.13.6 - Broken Access Control vulnerability — Elementor Addon Elements 6.5 Medium2024-11-01
CVE-2024-47362 WordPress Strong Testimonials plugin <= 3.1.16 - Broken Access Control vulnerability — Strong Testimonials 4.3 Medium2024-11-01
CVE-2024-37094 WordPress MasterStudy LMS plugin <= 3.2.12 - Broken Access Control vulnerability — MasterStudy LMS 8.2 High2024-11-01
CVE-2024-10399 Download Monitor <= 5.0.13 - Missing Authorization to Sensitive Information Exposure — Download Monitor 4.3 Medium2024-10-30
CVE-2024-50421 WordPress PDF Invoices & Packing Slips for WooCommerce plugin <= 3.8.6 - Broken Access Control vulnerability — WooCommerce PDF Invoices & Packing Slips 5.3 Medium2024-10-29
CVE-2024-50422 WordPress Breeze plugin <= 2.1.14 - Broken Access Control vulnerability — Breeze 5.3 Medium2024-10-29
CVE-2024-50423 WordPress Templately plugin <= 3.1.5 - Broken Access Control vulnerability — Templately 5.4 Medium2024-10-29
CVE-2024-50424 WordPress Templately plugin <= 3.1.5 - Broken Access Control vulnerability — Templately 6.5 Medium2024-10-29
CVE-2024-50428 WordPress Multi Step Form plugin <= 1.7.21 - Broken Access Control vulnerability — Multi Step Form 4.3 Medium2024-10-29
CVE-2024-50454 WordPress SEOPress plugin <= 8.1.1 - Unauthenticated Broken Access Control vulnerability — SEOPress 5.3 Medium2024-10-29
CVE-2024-50455 WordPress SEOPress plugin <= 8.1.1 - Broken Access Control vulnerability — SEOPress 4.3 Medium2024-10-29
CVE-2024-50456 WordPress SEOPress plugin <= 8.1.1 - Broken Access Control vulnerability — SEOPress 5.4 Medium2024-10-29
CVE-2024-50459 WordPress AidWP plugin <= 3.2.3 - Broken Access Control vulnerability — AidWP 5.3 Medium2024-10-29
CVE-2024-7475 Improper Access Control in lunary-ai/lunary — lunary-ai/lunary 7.5AIHighAI2024-10-29

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5532 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.