Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5531

5531 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-35671 WordPress MJ Update History plugin <= 1.0.4 - Broken Access Control vulnerability — MJ Update History 4.3 Medium2024-06-11
CVE-2024-35683 WordPress Leyka plugin <= 3.31.1 - Broken Access Control vulnerability — Leyka 5.3 Medium2024-06-11
CVE-2023-52183 WordPress WordPress Backup & Migration plugin <= 1.4.3 - Broken Access Control vulnerability — WordPress Backup & Migration 5.4 Medium2024-06-11
CVE-2024-34442 WordPress weDocs plugin <= 2.1.4 - Broken Access Control vulnerability — weDocs 5.3 Medium2024-06-11
CVE-2024-35685 WordPress Radcliffe 2 theme <= 2.0.17 - Broken Access Control vulnerability — Radcliffe 2 5.3 Medium2024-06-11
CVE-2023-52179 WordPress Product Expiry for WooCommerce plugin <= 2.5 - Broken Access Control vulnerability — Product Expiry for WooCommerce 5.4 Medium2024-06-11
CVE-2024-34813 WordPress WooCommerce Wishlist plugin <= 1.7.8 - Broken Access Control vulnerability — MC Woocommerce Wishlist 5.3 Medium2024-06-11
CVE-2024-34824 WordPress SportsPress – Sports Club & League Manager plugin <= 2.7.20 - Broken Access Control vulnerability — SportsPress – Sports Club & League Manager 4.3 Medium2024-06-11
CVE-2023-52217 WordPress WooCommerce Conversion Tracking plugin <= 2.0.11 - Broken Access Control vulnerability — WooCommerce Conversion Tracking 4.3 Medium2024-06-11
CVE-2024-24704 WordPress Load More Anything plugin <= 3.3.3 - Broken Access Control vulnerability — Load More Anything 5.4 Medium2024-06-11
CVE-2023-52186 WordPress WooCommerce Product Vendors plugin <= 2.2.2 - Unauthenticated Broken Access Control vulnerability — WooCommerce Product Vendors 5.3 Medium2024-06-11
CVE-2024-35692 WordPress GDPR/CCPA Cookie Consent Banner plugin <= 3.2 - Broken Access Control vulnerability — Cookie Consent 5.3 Medium2024-06-11
CVE-2024-35716 WordPress Copymatic plugin <= 1.9 - Broken Access Control vulnerability — Copymatic – AI Content Writer & Generator 6.5 Medium2024-06-11
CVE-2023-33922 WordPress Elementor plugin <= 3.13.2 - Broken Access Control vulnerability — Elementor Website Builder 4.3 Medium2024-06-11
CVE-2023-28775 WordPress Yoast SEO Premium plugin <= 20.4 - Unauthenticated Zapier API Key Reset vulnerability — Yoast SEO Premium 5.3 Medium2024-06-11
CVE-2023-25799 WordPress Tutor LMS plugin <= 2.1.8 - Multiple Broken Access Control vulnerabilities — Tutor LMS 8.3 High2024-06-11
CVE-2024-4319 Advanced Contact form 7 DB <= 2.0.2 - Missing Authorization to Unauthenticated Information Disclosure — Advanced Contact form 7 DB 5.3 Medium2024-06-11
CVE-2024-34691 Missing Authorization check in SAP S/4HANA (Manage Incoming Payment Files) — SAP S/4HANA (Manage Incoming Payment Files) 6.5 Medium2024-06-11
CVE-2024-34690 Missing Authorization check in SAP Student Life Cycle Management (SLcM) — SAP Student Life Cycle Management 5.4 Medium2024-06-11
CVE-2024-37176 Missing Authorization check in SAP BW/4HANA Transformation and DTP — SAP BW/4HANA Transformation and Data Transfer Process 5.5 Medium2024-06-11
CVE-2023-6748 Custom Field Template <= 2.6.1 - Authenticated(Contributor+) Information Exposure — Custom Field Template 4.3 Medium2024-06-11
CVE-2024-34800 WordPress Crafthemes Demo Import plugin <= 3.3 - Arbitrary plugin Installation vulnerability — Crafthemes Demo Import 7.6 High2024-06-10
CVE-2024-4744 WordPress iPages Flipbook plugin <= 1.5.1 - Broken Access Control vulnerability — iPages Flipbook 5.3 Medium2024-06-10
CVE-2024-4745 WordPress Giveaways and Contests by RafflePress plugin <= 1.12.4 - Broken Access Control vulnerability — Giveaways and Contests by RafflePress 4.3 Medium2024-06-10
CVE-2024-22296 WordPress 12 Step Meeting List plugin <= 3.14.28 - Broken Access Control vulnerability — 12 Step Meeting List 4.3 Medium2024-06-10
CVE-2024-22298 WordPress Amelia plugin <= 1.0.98 - Broken Access Control vulnerability — Amelia 5.3 Medium2024-06-10
CVE-2024-21751 WordPress RabbitLoader plugin <= 2.19.13 - Broken Access Control vulnerability — RabbitLoader 5.4 Medium2024-06-10
CVE-2024-23524 WordPress PilotPress plugin <= 2.0.30 - Broken Access Control vulnerability — PilotPress 5.3 Medium2024-06-10
CVE-2024-4746 WordPress Netgsm plugin <= 2.9.32 - Broken Access Control + CSRF vulnerability — Netgsm 4.3 Medium2024-06-10
CVE-2024-35717 WordPress Media Slider plugin <= 1.3.9 - Broken Access Control vulnerability — Media Slider – Photo Sleder, Video Slider, Link Slider, Carousal Slideshow 4.3 Medium2024-06-10

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5531 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.