Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5531

5531 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-10173 ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution <= 4.8.3 - Insufficient Authorization to Authenticated (Editor+) Settings Update — ShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution 2.7 Low2025-09-26
CVE-2025-20362 Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense 安全漏洞 — Cisco Secure Firewall Adaptive Security Appliance (ASA) Software 6.5 Medium2025-09-25
CVE-2025-40837 Ericsson Indoor Connect 8855 - Missing Authorization Vulnerability — Indoor Connect 8855 8.8AIHighAI2025-09-25
CVE-2025-59827 FlagForgeCTF is Missing Authorization in main-v2 — flagForge 8.8AIHighAI2025-09-24
CVE-2025-9054 MultiLoca - WooCommerce Multi Locations Inventory Management <= 4.2.8 - Missing Authorization to Unauthenticated Arbitrary Options Update via 'wcmlim_settings_ajax_handler' — MultiLoca - WooCommerce Multi Locations Inventory Management 9.8 Critical2025-09-24
CVE-2025-55038 AutomationDirect CLICK PLUS Missing Authorization — CLICK PLUS C0-0x CPU firmware 6.8 Medium2025-09-23
CVE-2025-59826 FlagForgeCTF Vulnerable to Unauthorized Problem Creation — flagForge 7.6 High2025-09-23
CVE-2025-10184 OnePlus OxygenOS Telephony provider permission bypass — OxygenOS 6.5AIMediumAI2025-09-23
CVE-2025-58957 WordPress VPSUForm Plugin <= 3.2.20 - Broken Access Control Vulnerability — VPSUForm 4.3 Medium2025-09-22
CVE-2025-58968 WordPress MaxiBlocks Plugin <= 2.1.3 - Broken Access Control Vulnerability — MaxiBlocks 5.0 Medium2025-09-22
CVE-2025-58969 WordPress Custom Login URL Plugin <= 1.0.2 - Broken Access Control Vulnerability — Custom Login URL 5.3 Medium2025-09-22
CVE-2025-59551 WordPress Revive.so Plugin <= 2.0.6 - Broken Access Control Vulnerability — Revive.so 4.3 Medium2025-09-22
CVE-2025-59559 WordPress Payrexx Payment Gateway for WooCommerce Plugin <= 3.1.5 - Broken Access Control Vulnerability — Payrexx Payment Gateway for WooCommerce 4.3 Medium2025-09-22
CVE-2025-59561 WordPress Smart Blocks Plugin <= 2.4 - Broken Access Control Vulnerability — Smart Blocks 4.3 Medium2025-09-22
CVE-2025-59567 WordPress Coupon Affiliates Plugin <= 6.8.0 - Broken Access Control Vulnerability — Coupon Affiliates 4.3 Medium2025-09-22
CVE-2025-59576 WordPress MasterStudy LMS Plugin <= 3.6.20 - Broken Access Control Vulnerability — MasterStudy LMS 6.5 Medium2025-09-22
CVE-2025-59581 WordPress Ibtana Plugin <= 1.2.5.3 - Arbitrary Content Deletion Vulnerability — Ibtana 6.5 Medium2025-09-22
CVE-2025-59591 WordPress wpDiscuz Plugin <= 7.6.33 - Broken Access Control Vulnerability — wpDiscuz 4.3 Medium2025-09-22
CVE-2025-53452 WordPress Event Rocket Plugin <= 3.3 - Broken Access Control Vulnerability — Event Rocket 4.3 Medium2025-09-22
CVE-2025-57899 WordPress WP Compress Plugin <= 6.50.54 - Broken Access Control Vulnerability — WP Compress 5.3 Medium2025-09-22
CVE-2025-57907 WordPress Heureka Plugin <= 1.1.0 - Broken Access Control Vulnerability — Heureka 5.3 Medium2025-09-22
CVE-2025-57909 WordPress Editor Custom Color Palette plugin <= 3.5.6 - Broken Access Control vulnerability — Editor Custom Color Palette 6.5 Medium2025-09-22
CVE-2025-57917 WordPress Printcart Web to Print Product Designer for WooCommerce plugin <= 2.4.8 - Broken Access Control vulnerability — Printcart Web to Print Product Designer for WooCommerce 4.3 Medium2025-09-22
CVE-2025-57921 WordPress Frontend File Manager plugin <= 23.3 - Broken Access Control vulnerability — Frontend File Manager 5.3 Medium2025-09-22
CVE-2025-57936 WordPress Subresource Integrity (SRI) Manager Plugin <= 0.4.0 - Broken Access Control Vulnerability — Subresource Integrity (SRI) Manager 4.3 Medium2025-09-22
CVE-2025-57939 WordPress Image Hover Effects – Elementor Addon Plugin <= 1.4.4 - Broken Access Control Vulnerability — Image Hover Effects – Elementor Addon 5.3 Medium2025-09-22
CVE-2025-57944 WordPress Skimlinks Affiliate Marketing Tool plugin <= 1.3 - Broken Access Control vulnerability — Skimlinks Affiliate Marketing Tool 5.3 Medium2025-09-22
CVE-2025-57949 WordPress Ongkoskirim.id Plugin <= 1.0.6 - Broken Access Control Vulnerability — Ongkoskirim.id 5.4 Medium2025-09-22
CVE-2025-57955 WordPress Post Carousel Slider for Elementor Plugin <= 1.7.0 - Broken Access Control Vulnerability — Post Carousel Slider for Elementor 6.5 Medium2025-09-22
CVE-2025-57957 WordPress WooMS Plugin <= 9.12 - Broken Access Control Vulnerability — WooMS 5.3 Medium2025-09-22

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5531 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.