Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5531

5531 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-63024 WordPress Order Delivery Date for WooCommerce plugin <= 4.3.1 - Broken Access Control vulnerability — Order Delivery Date for WooCommerce 5.4 Medium2025-12-09
CVE-2025-63028 WordPress Traveler theme <= 3.2.6 - Broken Access Control vulnerability — Traveler 5.3 Medium2025-12-09
CVE-2025-63025 WordPress Xagio SEO plugin <= 7.1.0.37 - Broken Access Control vulnerability — Xagio SEO 4.3 Medium2025-12-09
CVE-2025-63015 WordPress WooCommerce Payment Gateway – Paysera plugin <= 3.10.0 - Broken Access Control vulnerability — WooCommerce Payment Gateway - Paysera 4.3 Medium2025-12-09
CVE-2025-63023 WordPress Payment Gateway for PayPal on WooCommerce plugin <= 9.0.53 - Broken Access Control vulnerability — Payment Gateway for PayPal on WooCommerce 5.3 Medium2025-12-09
CVE-2025-63008 WordPress WP ERP plugin <= 1.16.7 - Broken Access Control vulnerability — WP ERP 5.3 Medium2025-12-09
CVE-2025-63006 WordPress EventPrime plugin <= 4.2.4.1 - Broken Access Control vulnerability — EventPrime 4.3 Medium2025-12-09
CVE-2025-62999 WordPress Litho Addons plugin <= 3.5 - Broken Access Control vulnerability — Litho Addons 5.4 Medium2025-12-09
CVE-2025-62996 WordPress Custom Layouts – Post + Product grids made easy plugin <= 1.4.12 - Broken Access Control vulnerability — Custom Layouts – Post + Product grids made easy 4.3 Medium2025-12-09
CVE-2025-62995 WordPress MultiParcels Shipping For WooCommerce plugin <= 1.30.12 - Broken Access Control vulnerability — MultiParcels Shipping For WooCommerce 4.3 Medium2025-12-09
CVE-2025-62993 WordPress Notification for Telegram plugin <= 3.5.1 - Broken Access Control vulnerability — Notification for Telegram 4.3 Medium2025-12-09
CVE-2025-62870 WordPress Eupago Gateway For Woocommerce plugin <= 4.7.1 - Broken Access Control vulnerability — Eupago Gateway For Woocommerce 5.3 Medium2025-12-09
CVE-2025-62869 WordPress Gravitec.net – Web Push Notifications plugin <= 2.9.17 - Broken Access Control vulnerability — Gravitec.net – Web Push Notifications 4.3 Medium2025-12-09
CVE-2025-62867 WordPress Ergonet Cache plugin <= 1.0.13 - Broken Access Control vulnerability — Ergonet Cache 4.3 Medium2025-12-09
CVE-2025-62865 WordPress Post Cloner plugin <= 1.0.0 - Broken Access Control vulnerability — Post Cloner 5.3 Medium2025-12-09
CVE-2025-62740 WordPress WP-CRM System plugin <= 3.4.6 - Broken Access Control vulnerability — WP-CRM System 5.3 Medium2025-12-09
CVE-2025-62738 WordPress Formstack Online Forms plugin <= 2.0.2 - Broken Access Control vulnerability — Formstack Online Forms 5.3 Medium2025-12-09
CVE-2025-62736 WordPress Image Cleanup plugin <= 1.9.2 - Broken Access Control vulnerability — Image Cleanup 4.3 Medium2025-12-09
CVE-2025-62152 WordPress ConveyThis plugin <= 269.2 - Broken Access Control vulnerability — ConveyThis 5.3 Medium2025-12-09
CVE-2025-62153 WordPress Quick Interest Slider plugin <= 3.1.7 - Broken Access Control vulnerability — Quick Interest Slider 5.3 Medium2025-12-09
CVE-2025-62151 WordPress Virtuaria PagBank / PagSeguro para Woocommerce plugin <= 3.6.3 - Broken Access Control vulnerability — Virtuaria PagBank / PagSeguro para Woocommerce 5.3 Medium2025-12-09
CVE-2025-62086 WordPress Яндекс Доставка (Boxberry) plugin <= 2.34 - Broken Access Control vulnerability — Яндекс Доставка (Boxberry) 5.4 Medium2025-12-09
CVE-2025-62090 WordPress Gutenverse News – Advanced News Magazine Blog Gutenberg Blocks Addons plugin <= 3.0.2 - Broken Access Control vulnerability — Gutenverse News – Advanced News Magazine Blog Gutenberg Blocks Addons 6.5 Medium2025-12-09
CVE-2025-62100 WordPress ThemeRain Core plugin <= 1.1.9 - Broken Access Control vulnerability — ThemeRain Core 5.3 Medium2025-12-09
CVE-2025-62085 WordPress BERTHA AI plugin <= 1.13 - Broken Access Control vulnerability — BERTHA AI 5.3 Medium2025-12-09
CVE-2025-49348 WordPress Hype plugin <= 1.0.5 - Broken Access Control vulnerability — Hype 5.3 Medium2025-12-09
CVE-2025-49350 WordPress Actionwear products sync plugin <= 2.3.3 - Broken Access Control vulnerability — Actionwear products sync 4.3 Medium2025-12-09
CVE-2025-67599 WordPress WebToffee eCommerce Marketing Automation plugin <= 2.1.1 - Broken Access Control vulnerability — WebToffee eCommerce Marketing Automation 4.3 Medium2025-12-09
CVE-2025-67597 WordPress Fluent Booking plugin <= 1.9.11 - Broken Access Control vulnerability — Fluent Booking 4.3 Medium2025-12-09
CVE-2025-67592 WordPress My Calendar plugin <= 3.6.16 - Broken Access Control vulnerability — My Calendar 4.3 Medium2025-12-09

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5531 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.