Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5527

5527 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-39639 WordPress RPS Include Content plugin <= 1.2.2 - Broken Access Control vulnerability — RPS Include Content 8.2AIHighAI2026-04-08
CVE-2026-39637 WordPress Mogi theme <= 1.2.3 - Arbitrary Shortcode Execution vulnerability — Mogi 9.1AICriticalAI2026-04-08
CVE-2026-39631 WordPress WPSchoolPress plugin <= 2.2.35 - Broken Access Control vulnerability — WPSchoolPress 7.1AIHighAI2026-04-08
CVE-2026-39627 WordPress Ashe theme <= 2.266 - Broken Access Control vulnerability — Ashe 6.5AIMediumAI2026-04-08
CVE-2026-39624 WordPress Biolife theme <= 3.2.3 - Arbitrary Shortcode Execution vulnerability — Biolife 9.1AICriticalAI2026-04-08
CVE-2026-39622 WordPress Education Base theme <= 3.0.8 - Broken Access Control vulnerability — Education Base 9.1AICriticalAI2026-04-08
CVE-2026-39610 WordPress WpXmas-Snow plugin <= 1.1 - Broken Access Control vulnerability — WpXmas-Snow 8.1AIHighAI2026-04-08
CVE-2026-39614 WordPress JW Player for WordPress plugin <= 2.3.6 - Broken Access Control vulnerability — JW Player for WordPress 9.1AICriticalAI2026-04-08
CVE-2026-39612 WordPress KuteShop theme <= 4.2.9 - Arbitrary Shortcode Execution vulnerability — KuteShop 8.2AIHighAI2026-04-08
CVE-2026-39608 WordPress iPOSpays Gateways WC plugin <= 1.3.7 - Broken Access Control vulnerability — iPOSpays Gateways WC 5.9AIMediumAI2026-04-08
CVE-2026-39606 WordPress BizReview plugin <= 1.5.13 - Broken Access Control vulnerability — BizReview 7.1AIHighAI2026-04-08
CVE-2026-39607 WordPress Filter Plus plugin <= 1.1.17 - Broken Access Control vulnerability — Filter Plus 8.1AIHighAI2026-04-08
CVE-2026-39609 WordPress Wava Payment plugin <= 0.3.7 - Broken Access Control vulnerability — Wava Payment 8.2AIHighAI2026-04-08
CVE-2026-39602 WordPress Order Tracking plugin <= 3.4.3 - Broken Access Control vulnerability — Order Tracking 8.1AIHighAI2026-04-08
CVE-2026-39592 WordPress DEPART plugin <= 1.0.7 - Broken Access Control vulnerability — DEPART 8.1AIHighAI2026-04-08
CVE-2026-39605 WordPress Super Custom Login plugin <= 1.1 - Broken Access Control vulnerability — Super Custom Login 9.1AICriticalAI2026-04-08
CVE-2026-39588 WordPress NM Gift Registry and Wishlist Lite plugin <= 5.13 - Broken Access Control vulnerability — NM Gift Registry and Wishlist Lite 9.1AICriticalAI2026-04-08
CVE-2026-39585 WordPress Booktics plugin <= 1.0.16 - Broken Access Control vulnerability — Booktics 9.1AICriticalAI2026-04-08
CVE-2026-39569 WordPress 12 Step Meeting List plugin <= 3.19.9 - Broken Access Control vulnerability — 12 Step Meeting List 7.1AIHighAI2026-04-08
CVE-2026-39565 WordPress WpTravelly plugin <= 2.1.7 - Broken Access Control vulnerability — WpTravelly 8.1AIHighAI2026-04-08
CVE-2026-39563 WordPress Share This Image plugin <= 2.12 - Broken Access Control vulnerability — Share This Image 8.2AIHighAI2026-04-08
CVE-2026-39562 WordPress Client Invoicing by Sprout Invoices plugin <= 20.8.10 - Broken Access Control vulnerability — Client Invoicing by Sprout Invoices 9.1AICriticalAI2026-04-08
CVE-2026-39543 WordPress Tourfic plugin <= 2.21.4 - Broken Access Control vulnerability — Tourfic 9.1AICriticalAI2026-04-08
CVE-2026-39561 WordPress Revive.so plugin <= 2.0.7 - Broken Access Control vulnerability — Revive.so 7.1AIHighAI2026-04-08
CVE-2026-39528 WordPress WP Delicious plugin <= 1.9.5 - Broken Access Control vulnerability — WP Delicious 7.1AIHighAI2026-04-08
CVE-2026-39535 WordPress Display Eventbrite Events plugin <= 6.5.6 - Broken Access Control vulnerability — Display Eventbrite Events 9.1AICriticalAI2026-04-08
CVE-2026-39520 WordPress weDocs plugin <= 2.1.18 - Broken Access Control vulnerability — weDocs 7.1AIHighAI2026-04-08
CVE-2026-39505 WordPress Seriously Simple Podcasting plugin <= 3.14.2 - Broken Access Control vulnerability — Seriously Simple Podcasting 8.2AIHighAI2026-04-08
CVE-2026-39506 WordPress AI Engine (Pro) plugin < 3.4.2 - Broken Access Control vulnerability — AI Engine (Pro) 9.1AICriticalAI2026-04-08
CVE-2026-39509 WordPress Directorist plugin <= 8.5.10 - Broken Access Control vulnerability — Directorist 8.1AIHighAI2026-04-08

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5527 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.