CWE-862 (授权机制缺失) — Vulnerability Class 5531

5531 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2023-39312	WordPress Avada theme <= 7.11.1 - Auth. Unrestricted Zip Extraction vulnerability — Avada	9.1	Critical	2024-06-19
CVE-2023-36515	WordPress LearnPress plugin <= 4.2.3 - Unauthenticated Broken Access Control vulnerability — LearnPress	7.3	High	2024-06-19
CVE-2023-36516	WordPress LearnPress plugin <= 4.2.3 - Authenticated Broken Access Control vulnerability — LearnPress	7.6	High	2024-06-19
CVE-2023-38393	WordPress Ninja Forms plugin <= 3.6.25 - Subscriber+ Broken Access Control vulnerability — Ninja Forms	7.6	High	2024-06-19
CVE-2023-38394	WordPress Jupiter X Core plugin <= 3.3.0 - Multiple Auth. Broken Access Control vulnerability — JupiterX Core	5.4	Medium	2024-06-19
CVE-2023-39310	WordPress Avada Builder plugin <= 3.11.1 - Authenticated Broken Access Control vulnerability — Fusion Builder	5.4	Medium	2024-06-19
CVE-2023-36676	WordPress Spectra plugin <= 2.6.6 - Broken Access Control vulnerability — Spectra	5.4	Medium	2024-06-19
CVE-2023-36683	WordPress Schema Pro plugin <= 2.7.8 - Broken Access Control vulnerability — Schema Pro	6.5	Medium	2024-06-19
CVE-2023-36684	WordPress Convert Pro plugin <= 1.7.5 - Broken Access Control vulnerability — Convert Pro	7.1	High	2024-06-19
CVE-2023-37869	WordPress Premium Addons PRO plugin <= 2.9.0 - Broken Access Control vulnerability — Premium Addons PRO	6.5	Medium	2024-06-19
CVE-2023-37872	WordPress WooCommerce Ship to Multiple Addresses plugin <= 3.8.5 - Broken Access Control vulnerability — WooCommerce Ship to Multiple Addresses	6.5	Medium	2024-06-19
CVE-2023-38386	WordPress Ninja Forms plugin <= 3.6.25 - Contributor+ Broken Access Control vulnerability — Ninja Forms	7.6	High	2024-06-19
CVE-2023-36512	WordPress AutomateWoo plugin <= 5.7.5 - Broken Access Control vulnerability — AutomateWoo	6.5	Medium	2024-06-19
CVE-2023-37870	WordPress WooCommerce Warranty Requests plugin <= 2.1.9 - Broken Access Control vulnerability — WooCommerce Warranty Requests	8.1	High	2024-06-19
CVE-2023-35050	WordPress Elementor Pro plugin <= 3.13.0 - Auth. Broken Access Control vulnerability — Elementor Pro	5.4	Medium	2024-06-19
CVE-2023-35049	WordPress WooCommerce Stripe Payment Gateway plugin <= 7.4.0 - Unauthenticated Broken Access Control vulnerability — WooCommerce Stripe Payment Gateway	7.5	High	2024-06-19
CVE-2023-41805	Broken Access Control vulnerability in multiple Brainstorm Force plugins — Premium Starter Templates	6.5	Medium	2024-06-19
CVE-2023-39922	WordPress Avada theme <= 7.11.1 - Authenticated Broken Access Control vulnerability — Avada	4.3	Medium	2024-06-19
CVE-2023-39990	WordPress Paid Memberships Pro plugin <= 1.2.3 - Broken Access Control vulnerability — Paid Memberships Pro	5.4	Medium	2024-06-19
CVE-2023-39993	WordPress ElementsKit Lite plugin <= 2.9.0 - Broken Access Control vulnerability — Elements kit Elementor addons	4.3	Medium	2024-06-19
CVE-2023-39998	WordPress BeTheme theme <= 27.1.1 - Author+ Broken Access Control vulnerability — Betheme	8.2	High	2024-06-19
CVE-2023-40004	Unauth. Access Token Manipulation vulnerability in multiple ServMask WordPress plugins — All-in-One WP Migration Box Extension	7.3	High	2024-06-19
CVE-2023-40608	WordPress Paid Memberships Pro CCBill Gateway plugin <= 0.3 - Unauthenticated Broken Access Control vulnerability — Paid Memberships Pro CCBill Gateway	8.2	High	2024-06-19
CVE-2023-44148	WordPress Astra Bulk Edit plugin <= 1.2.7 - Broken Access Control vulnerability — Astra Bulk Edit	5.4	Medium	2024-06-19
CVE-2023-44151	WordPress Pre-Publish Checklist plugin <= 1.1.1 - Broken Access Control vulnerability — Pre-Publish Checklist	5.4	Medium	2024-06-19
CVE-2023-45658	WordPress Nexter theme <= 2.0.3 - Broken Access Control vulnerability — Nexter	7.6	High	2024-06-19
CVE-2023-46146	WordPress Themify Ultra theme <= 7.3.5 - Multiple Broken Access Control vulnerability — Themify Ultra	8.3	High	2024-06-19
CVE-2023-46148	WordPress Themify Ultra theme <= 7.3.5 - Authenticated Arbitrary Settings Change vulnerability — Themify Ultra	8.8	High	2024-06-19
CVE-2023-47770	WordPress BeTheme theme <= 27.1.1 - Contributor+ Broken Access Control vulnerability — Betheme	7.6	High	2024-06-19
CVE-2023-47681	WordPress WooCommerce Checkout Manager plugin <= 7.3.0 - Broken Access Control vulnerability — WooCommerce Checkout Manager	6.5	Medium	2024-06-19

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5531 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-862 (授权机制缺失) — Vulnerability Class 5531