CWE-862 (授权机制缺失) — Vulnerability Class 5527

5527 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2026-39690	WordPress Author Avatars List/Block plugin <= 2.1.25 - Broken Access Control vulnerability — Author Avatars List/Block	8.1^AI	High^AI	2026-04-08
CVE-2026-39691	WordPress Cryptocurrency Donation Box – Bitcoin & Crypto Donations plugin <= 2.2.13 - Broken Access Control vulnerability — Cryptocurrency Donation Box – Bitcoin & Crypto Donations	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39687	WordPress Rapid Car Check Vehicle Data plugin <= 2.0 - Broken Access Control vulnerability — Rapid Car Check Vehicle Data	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39688	WordPress WP Frontend Profile plugin <= 1.3.9 - Broken Access Control vulnerability — WP Frontend Profile	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39689	WordPress eShipper Commerce plugin <= 2.16.12 - Broken Access Control vulnerability — eShipper Commerce	8.2^AI	High^AI	2026-04-08
CVE-2026-39685	WordPress The Moneytizer plugin <= 10.0.10 - Broken Access Control vulnerability — The Moneytizer	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39680	WordPress Diet Calorie Calculator plugin <= 1.1.1 - Broken Access Control vulnerability — Diet Calorie Calculator	8.1^AI	High^AI	2026-04-08
CVE-2026-39678	WordPress Pinpoint Booking System plugin <= 2.9.9.6.5 - Broken Access Control vulnerability — Pinpoint Booking System	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39682	WordPress linkPizza-Manager plugin <= 5.5.5 - Broken Access Control vulnerability — linkPizza-Manager	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39675	WordPress Court Reservation plugin <= 1.10.11 - Broken Access Control vulnerability — Court Reservation	8.1^AI	High^AI	2026-04-08
CVE-2026-39676	WordPress Download Manager plugin <= 3.3.52 - Broken Access Control vulnerability — Download Manager	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39673	WordPress iZooto plugin <= 3.7.20 - Broken Access Control vulnerability — iZooto	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39672	WordPress ShipTime: Discounted Shipping Rates plugin <= 1.1.1 - Broken Access Control vulnerability — ShipTime: Discounted Shipping Rates	7.1^AI	High^AI	2026-04-08
CVE-2026-39668	WordPress Book Previewer for Woocommerce plugin <= 1.0.6 - Broken Access Control vulnerability — Book Previewer for Woocommerce	8.1^AI	High^AI	2026-04-08
CVE-2026-39669	WordPress NitroPack plugin <= 1.19.3 - Broken Access Control vulnerability — NitroPack	5.3	Medium	2026-04-08
CVE-2026-39663	WordPress TrueBooker plugin <= 1.1.5 - Broken Access Control vulnerability — TrueBooker	8.1^AI	High^AI	2026-04-08
CVE-2026-39664	WordPress Leadrebel plugin <= 1.0.2 - Broken Access Control vulnerability — Leadrebel	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39658	WordPress Panda Pods Repeater Field plugin <= 1.5.12 - Broken Access Control vulnerability — Panda Pods Repeater Field	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39660	WordPress WP Job Manager plugin <= 2.4.1 - Broken Access Control vulnerability — WP Job Manager	7.1^AI	High^AI	2026-04-08
CVE-2026-39662	WordPress Product Price by Formula for WooCommerce plugin <= 2.5.6 - Broken Access Control vulnerability — Product Price by Formula for WooCommerce	5.3^AI	Medium^AI	2026-04-08
CVE-2026-39656	WordPress Razorpay for WooCommerce plugin <= 4.8.2 - Broken Access Control vulnerability — Razorpay for WooCommerce	8.2^AI	High^AI	2026-04-08
CVE-2026-39657	WordPress leadlovers forms plugin <= 1.0.2 - Broken Access Control vulnerability — leadlovers forms	8.2^AI	High^AI	2026-04-08
CVE-2026-39653	WordPress Video Conferencing with Zoom plugin <= 4.6.6 - Broken Access Control vulnerability — Video Conferencing with Zoom	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39651	WordPress Total Poll Lite plugin <= 4.12.0 - Broken Access Control vulnerability — Total Poll Lite	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39652	WordPress iGMS Direct Booking plugin <= 1.3 - Broken Access Control vulnerability — iGMS Direct Booking	7.1^AI	High^AI	2026-04-08
CVE-2026-39648	WordPress Cream Blog theme <= 2.1.7 - Broken Access Control vulnerability — Cream Blog	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39649	WordPress Royale News theme <= 2.2.4 - Broken Access Control vulnerability — Royale News	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39650	WordPress UnitechPay plugin <= 1.0.2 - Broken Access Control vulnerability — UnitechPay	9.1^AI	Critical^AI	2026-04-08
CVE-2026-39644	WordPress Wp Ultimate Review plugin <= 2.3.8 - Broken Access Control vulnerability — Wp Ultimate Review	8.2^AI	High^AI	2026-04-08
CVE-2026-39639	WordPress RPS Include Content plugin <= 1.2.2 - Broken Access Control vulnerability — RPS Include Content	8.2^AI	High^AI	2026-04-08

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5527 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-862 (授权机制缺失) — Vulnerability Class 5527