Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5531

5531 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-54943 SUNNET Corporate Training Management System - Missing Authorization — Corporate Training Management System 8.1 -2025-08-30
CVE-2025-43773 Liferay Portal和Liferay DXP 安全漏洞 — Portal 9.1 -2025-08-29
CVE-2025-58334 JetBrains IDE Services 安全漏洞 — IDE Services 8.1 High2025-08-28
CVE-2025-54734 WordPress B Slider Plugin <= 1.1.30 - Broken Access Control Vulnerability — B Slider 5.8 Medium2025-08-28
CVE-2025-54733 WordPress All Bootstrap Blocks Plugin <= 1.3.28 - Broken Access Control Vulnerability — All Bootstrap Blocks 6.5 Medium2025-08-28
CVE-2025-54714 WordPress Zephyr Project Manager Plugin <= 3.3.201 - Broken Access Control Vulnerability — Zephyr Project Manager 7.1 High2025-08-28
CVE-2025-54710 WordPress Tiktok Feed Plugin <= 1.0.21 - Broken Access Control Vulnerability — Tiktok Feed 7.1 High2025-08-28
CVE-2025-53337 WordPress LifePress plugin <= 2.1.3 - Broken Access Control vulnerability — LifePress 5.4 Medium2025-08-28
CVE-2025-53230 WordPress Page Manager for Elementor Plugin <= 2.0.5 - Broken Access Control Vulnerability — Page Manager for Elementor 7.6 High2025-08-28
CVE-2025-48350 WordPress AutoWP plugin <= 2.2.7 - Broken Access Control vulnerability — AutoWP 4.3 Medium2025-08-28
CVE-2025-48327 WordPress WP Mailgun SMTP plugin <= 1.0.7 - Broken Access Control vulnerability — WP Mailgun SMTP 5.3 Medium2025-08-28
CVE-2025-7956 Ajax Search Lite <= 4.13.1 - Missing Authorization to Unauthenticated Basic Information Exposure via ASL_Query in AJAX Search Handler — Ajax Search Lite – Live Search & Filter 5.3 Medium2025-08-28
CVE-2025-0951 LiquidThemes Themes <= Various Versions - Missing Authorization to Authenticated (Subscriber+) All Plugins Deactivated — AI Hub - Startup & Technology WordPress Theme 4.3 Medium2025-08-28
CVE-2025-2246 Missing Authorization in GitLab — GitLab 5.8 Medium2025-08-27
CVE-2025-58198 WordPress Xpro Theme Builder Plugin <= 1.2.9 - Broken Access Control Vulnerability — Xpro Theme Builder 6.5 Medium2025-08-27
CVE-2025-58201 WordPress AfterShip Tracking Plugin <= 1.17.17 - Broken Access Control Vulnerability — AfterShip Tracking 5.3 Medium2025-08-27
CVE-2025-58192 WordPress WP Bulk Delete Plugin <= 1.3.6 - Broken Access Control Vulnerability — WP Bulk Delete 4.3 Medium2025-08-27
CVE-2025-58193 WordPress Uncanny Automator Plugin <= 6.7.0.1 - Broken Access Control Vulnerability — Uncanny Automator 4.3 Medium2025-08-27
CVE-2025-48108 WordPress School Management Plugin <= 93.2.0 - Broken Access Control Vulnerability — School Management 6.5 Medium2025-08-26
CVE-2024-8860 Tourfic <= 2.14.5 - Missing Authorization in Multiple Functions — Tourfic – Travel Booking, Hotel Booking & Car Rental WordPress Plugin 4.3 Medium2025-08-26
CVE-2025-7821 WC Plus <= 1.2.0 - Missing Authorization to Unauthenticated Settings Manipulation — WC Plus 5.3 Medium2025-08-23
CVE-2025-7828 WP Filter & Combine RSS Feeds <= 0.4 - Missing Authorization to Authenticated (Contributor+) Feed Deletion — WP Filter & Combine RSS Feeds 4.3 Medium2025-08-23
CVE-2025-7827 Ni WooCommerce Customer Product Report <= 1.2.4 - Missing Authorization to Authenticated (Subscriber+) Settings Update — Ni WooCommerce Customer Product Report 4.3 Medium2025-08-23
CVE-2025-57896 WordPress Church Admin Plugin <= 5.0.26 - Broken Access Control Vulnerability — Church Admin 5.3 Medium2025-08-22
CVE-2025-57894 WordPress WPPizza Plugin <= 3.19.8 - Broken Access Control Vulnerability — WPPizza 4.3 Medium2025-08-22
CVE-2025-57884 WordPress Greenshift Plugin <= 12.1.1 - Broken Access Control Vulnerability — Greenshift 4.3 Medium2025-08-22
CVE-2025-9331 Spacious <= 1.9.11 - Missing Authorization to Autheticated (Subscriber+) Demo Data Import — Spacious 4.3 Medium2025-08-22
CVE-2025-49396 WordPress Themify Builder Plugin <= 7.6.7 - Broken Access Control Vulnerability — Themify Builder 4.3 Medium2025-08-20
CVE-2025-49406 WordPress Houzez Theme <= 4.1.1 - Broken Access Control Vulnerability — Houzez 8.5 High2025-08-20
CVE-2025-54025 WordPress Coupon Affiliates Plugin <= 6.4.0 - Settings Change Vulnerability — Coupon Affiliates 6.5 Medium2025-08-20

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5531 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.