Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5531

5531 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2024-33686 Broken Access Control vulnerability affecting multiple WordPress themes by Extend Themes — Pathway 4.3 Medium2024-04-29
CVE-2024-32730 Missing authorization check in SAP Enable Now Manager — SAP Enable Now 6.5 Medium2024-04-26
CVE-2022-40975 WordPress Post Slider plugin <= 1.6.7 - Broken Access Control vulnerability — Post Slider 5.4 Medium2024-04-26
CVE-2024-32822 WordPress Reviews Plus plugin <= 1.3.4 - Broken Access Control vulnerability — Reviews Plus 4.3 Medium2024-04-26
CVE-2024-32826 WordPress VK Block Patterns plugin <= 1.31.0 - Broken Access Control vulnerability — VK Block Patterns 5.3 Medium2024-04-26
CVE-2024-32828 WordPress Table Rate Shipping Method for WooCommerce by Flexible Shipping plugin <= 4.24.15 - Broken Access Control vulnerability — Flexible Shipping 4.3 Medium2024-04-26
CVE-2024-32829 WordPress Data Tables Generator by Supsystic plugin <= 1.10.31 - Broken Access Control vulnerability — Data Tables Generator by Supsystic 4.3 Medium2024-04-26
CVE-2024-32957 WordPress Page Builder: Live Composer plugin <= 1.5.38 - Broken Access Control vulnerability — Page Builder: Live Composer 4.7 Medium2024-04-26
CVE-2024-3678 Blog2Social: Social Media Auto Post & Scheduler <= 7.4.2 - Information Exposure — Blog2Social: Social Media Auto Post & Scheduler 5.3 Medium2024-04-26
CVE-2023-52220 WordPress MonsterInsights plugin <= 8.21.0 - Broken Access Control vulnerability — Google Analytics by Monster Insights 4.3 Medium2024-04-25
CVE-2024-3893 Classified Listing – Classified ads & Business Directory Plugin <= 3.0.10.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Attachment Deletion — Classified Listing – AI-Powered Classified ads & Business Directory Plugin 4.3 Medium2024-04-25
CVE-2023-32127 WordPress Multi Rating plugin <= 5.0.6 - Unauth Arbitrary rating value change — Multi Rating 5.3 Medium2024-04-24
CVE-2024-32432 WordPress Ovic Addon Toolkit plugin <= 2.6.1 - Broken Access Control vulnerability — Ovic Addon Toolkit 4.3 Medium2024-04-24
CVE-2024-32675 WordPress Order Limit for WooCommerce plugin <= 2.0.0 - Broken Access Control vulnerability — Order Limit for WooCommerce 6.5 Medium2024-04-24
CVE-2024-32677 WordPress LoginPress Pro plugin < 3.0.0 - Unauth. License Activation/Deactivation vulnerability — LoginPress Pro 6.5 Medium2024-04-24
CVE-2024-32678 WordPress TrackShip for WooCommerce plugin <= 1.7.5 - Broken Access Control vulnerability — TrackShip for WooCommerce 5.3 Medium2024-04-24
CVE-2023-25785 WordPress WP Post Rating plugin <= 2.5 - Vote Manipulation Vulnerability — WP Post Rating 5.3 Medium2024-04-24
CVE-2023-23985 WordPress Quiz Maker plugin <= 6.3.9.4 - Content Spoofing — Quiz Maker 3.7 Low2024-04-24
CVE-2024-32948 WordPress ARMember – Membership Plugin plugin <= 4.0.28 - Broken Access Control vulnerability — ARMember 9.1 Critical2024-04-24
CVE-2024-32951 WordPress Max Addons Pro for Bricks plugin <= 1.6.1 - Unauthenticated Plugin Settings Reset vulnerability — Max Addons Pro for Bricks 6.5 Medium2024-04-24
CVE-2024-32679 WordPress Shared Files plugin <= 1.7.16 - Broken Access Control vulnerability — Shared Files 5.3 Medium2024-04-23
CVE-2024-0900 Elespare – Build Your Blog, News & Magazine Websites with Expert-Designed Template Kits. One Click Import: No Coding Skills Required! <= 2.1.2 - Missing Authorization to Subscriber+ Arbitrary Post Creation — EleSpare – News, Magazine and Blog Addons for Elementor 4.3 Medium2024-04-23
CVE-2024-3664 Quick Featured Images <= 13.7.0 - Missing Authorization to Authenticated (Contributor+) Arbitrary Thumbnail Deletion/Setting — Quick Featured Images 4.3 Medium2024-04-23
CVE-2024-32656 Ant Media Server vulnerable to local privilege escalation — Ant-Media-Server 7.8 High2024-04-22
CVE-2024-32681 WordPress Prime Slider plugin <= 3.13.2 - Broken Access Control vulnerability — Prime Slider – Addons For Elementor 4.3 Medium2024-04-22
CVE-2024-32682 WordPress Prime Slider plugin <= 3.13.2 - Broken Access Control vulnerability — Prime Slider – Addons For Elementor 7.1 High2024-04-22
CVE-2024-32684 WordPress WP Ultimate Review plugin <= 2.2.5 - Broken Access Control on Review vulnerability — Wp Ultimate Review 5.3 Medium2024-04-22
CVE-2024-32687 WordPress WPC Frequently Bought Together for WooCommerce plugin <= 7.0.3 - Broken Access Control vulnerability — WPC Frequently Bought Together for WooCommerce 4.3 Medium2024-04-22
CVE-2024-32688 WordPress MyRewards plugin <= 5.3.0 - Broken Access Control vulnerability — MyRewards 6.5 Medium2024-04-22
CVE-2024-32691 WordPress Active Products Tables for WooCommerce plugin <= 1.0.6.2 - Broken Access Control vulnerability — Active Products Tables for WooCommerce 5.3 Medium2024-04-22

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5531 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.