Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5531

5531 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-3124 Missing Authorization vulnerability was identified in GitHub Enterprise Server that allowed unauthorized access to private repository names — Enterprise Server 4.3AIMediumAI2025-04-17
CVE-2025-23773 WordPress Delete All Posts plugin <= 1.1.1 - Broken Access Control vulnerability — Delete All Posts 6.5 Medium2025-04-17
CVE-2025-23906 WordPress WordPress Dashboard Tweeter plugin <= 1.3.2 - Settings Change vulnerability — WordPress Dashboard Tweeter 6.5 Medium2025-04-17
CVE-2025-23958 WordPress Editor Wysiwyg Background Color plugin <= 1.0 - Broken Access Control vulnerability — Editor Wysiwyg Background Color 6.5 Medium2025-04-17
CVE-2025-24577 WordPress Poll Maker plugin <= 5.5.0 - Broken Access Control vulnerability — Poll Maker 6.5 Medium2025-04-17
CVE-2025-24581 WordPress Instantio plugin <= 3.3.7 - Settings Change vulnerability — Instantio 6.5 Medium2025-04-17
CVE-2025-24583 WordPress 12 Step Meeting List plugin <= 3.16.5 - Settings Change vulnerability — 12 Step Meeting List 6.5 Medium2025-04-17
CVE-2025-24737 WordPress WP Helper Premium plugin <= 4.6.1 - Broken Access Control vulnerability — WP Helper Premium 6.5 Medium2025-04-17
CVE-2025-27310 WordPress Page and Post Lister plugin <= 1.2.1 - Arbitrary Content Deletion vulnerability — Page and Post Lister 6.5 Medium2025-04-17
CVE-2025-32544 WordPress WooCommerce Loyal Customers plugin <= 2.6 - Broken Access Control vulnerability — WooCommerce Loyal Customers 7.5 High2025-04-17
CVE-2025-32593 WordPress Add Product Frontend for WooCommerce plugin <= 1.0.8 - Arbitrary Content Deletion vulnerability — Add Product Frontend for WooCommerce 8.2 High2025-04-17
CVE-2025-32620 WordPress Doppler Forms plugin <= 2.4.6 - Broken Access Control vulnerability — Doppler Forms 7.1 High2025-04-17
CVE-2025-39532 WordPress Spice Blocks plugin <= 2.0.7.7 - Broken Access Control vulnerability — Spice Blocks 7.5 High2025-04-17
CVE-2025-39533 WordPress Starfish Review Generation & Marketing plugin <= 3.1.19 - Privilege Escalation vulnerability — Starfish Review Generation & Marketing 8.8 High2025-04-17
CVE-2025-39554 WordPress AI Text to Speech plugin <= 3.0.3 - Broken Access Control vulnerability — AI Text to Speech 6.5 Medium2025-04-17
CVE-2025-39559 WordPress Bring Fraktguiden for WooCommerce plugin <= 1.11.4 - Broken Access Control vulnerability — Bring Fraktguiden for WooCommerce 6.5 Medium2025-04-17
CVE-2025-39580 WordPress Dashi plugin <= 3.1.8 - Broken Access Control Vulnerability — Dashi 5.8 Medium2025-04-17
CVE-2025-39583 WordPress BERTHA AI plugin <= 1.12.10.2 - Arbitrary Content Deletion Vulnerability — BERTHA AI 7.1 High2025-04-17
CVE-2025-26968 WordPress Cloak Front End Email <= 1.9.5 - Broken Access Control Vulnerability — Cloak Front End Email 7.5 High2025-04-17
CVE-2025-39456 WordPress WP Logger plugin <= 2.2 - Broken Access Control vulnerability — WP Logger 5.4 Medium2025-04-17
CVE-2025-39457 WordPress Booking and Rental Manager plugin <= 2.2.8 - Broken Access Control vulnerability — Booking and Rental Manager 5.3 Medium2025-04-17
CVE-2025-31338 Wisdom Master Pro - Missing Authorization — Wisdom Master Pro 5.3AIMediumAI2025-04-17
CVE-2025-39513 WordPress ActiveDEMAND plugin <= 0.2.46 - Broken Access Control vulnerability — ActiveDEMAND 5.3 Medium2025-04-16
CVE-2025-39522 WordPress Dynamic Post plugin <= 5.03 - Settings Change vulnerability — Dynamic Post 5.4 Medium2025-04-16
CVE-2025-39531 WordPress Slazzer Background Changer plugin <= 3.14 - Broken Access Control Vulnerability — Slazzer Background Changer 5.3 Medium2025-04-16
CVE-2025-39545 WordPress REST API Authentication plugin <= 3.6.3 - Settings Change Vulnerability — WordPress REST API Authentication 5.4 Medium2025-04-16
CVE-2025-39552 WordPress Zephyr Project Manager plugin <= 3.3.200 - Broken Access Control Vulnerability — Zephyr Project Manager 5.4 Medium2025-04-16
CVE-2025-39560 WordPress Live Forms plugin <= 4.8.4 - Broken Access Control vulnerability — Live Forms 5.4 Medium2025-04-16
CVE-2025-39571 WordPress WowStore plugin <= 4.2.4 - Broken Access Control Vulnerability — WowStore 4.3 Medium2025-04-16
CVE-2025-39591 WordPress WP Subscription Forms plugin <= 1.2.3 - Broken Access Control Vulnerability — WP Subscription Forms 5.4 Medium2025-04-16

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5531 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.