Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5531

5531 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-39602 WordPress WooCommerce Product Table Lite plugin <= 3.9.5 - Broken Access Control vulnerability — WooCommerce Product Table Lite 4.3 Medium2025-04-16
CVE-2025-30960 WordPress FS Poster plugin <= 6.5.8 - Subscriber+ Site Wide Broken Access Control vulnerability — FS Poster 8.3 High2025-04-16
CVE-2025-27008 WordPress Unlimited Timeline < 1.6.1 - Broken Access Control Vulnerability — Unlimited Timeline 7.5 High2025-04-15
CVE-2025-26953 WordPress JetMenu plugin <= 2.4.9 - Broken Access Control Vulnerability — JetMenu 7.5 High2025-04-15
CVE-2025-26958 WordPress JetBlog plugin <= 2.4.3 - Broken Access Control Vulnerability — JetBlog 7.5 High2025-04-15
CVE-2025-26959 WordPress Administrator Z <= 2025.03.24 - Privilege Escalation Vulnerability — Administrator Z 8.8 High2025-04-15
CVE-2025-26955 WordPress Industrial Lite theme <= 1.0.8 - Broken Access Control vulnerability — Industrial Lite 4.3 Medium2025-04-15
CVE-2025-26942 WordPress JetTricks plugin <= 1.5.1 - Broken Access Control Vulnerability — JetTricks 7.5 High2025-04-15
CVE-2025-26944 WordPress JetPopup plugin <= 2.0.11 - Broken Access Control Vulnerability — JetPopup 7.5 High2025-04-15
CVE-2025-26741 WordPress Email Notifications for Updates <= 1.1.6 - Privilege Escalation Vulnerability — Email Notifications for Updates 8.8 High2025-04-15
CVE-2025-32929 WordPress Barcode Generator for WooCommerce plugin <= 2.0.4 - Arbitrary Content Deletion vulnerability — Barcode Generator for WooCommerce 7.5 High2025-04-15
CVE-2025-32542 WordPress Eazy Plugin Manager plugin <= 4.3.0 - Broken Access Control vulnerability — Eazy Plugin Manager 8.8 High2025-04-11
CVE-2025-31041 WordPress AnyTrack Affiliate Link Manager plugin <= 1.0.4 - Broken Access Control Vulnerability — AnyTrack Affiliate Link Manager 7.5 High2025-04-11
CVE-2025-32260 WordPress DethemeKit For Elementor plugin <= 2.1.10 - Broken Access Control vulnerability — DethemeKit For Elementor 5.3 Medium2025-04-10
CVE-2025-32240 WordPress Site Notify plugin <= 1.0 - Broken Access Control Vulnerability — Site Notify 6.5 Medium2025-04-10
CVE-2025-32236 WordPress Woocommerce Products Reorder Drag Drop Multiple Sort plugin <= 1.9 - Broken Access Control vulnerability — Woocommerce Products Reorder Drag Drop Multiple Sort – Sortable, Rearrange Products Vagonic 4.3 Medium2025-04-10
CVE-2025-32259 WordPress WP ULike plugin <= 4.7.9.1 - Content Spoofing Vulnerability — WP ULike 5.3 Medium2025-04-10
CVE-2025-32243 WordPress Internal Link Optimiser plugin <= 5.1.2 - Settings Change vulnerability — Internal Link Optimiser 6.5 Medium2025-04-10
CVE-2025-32244 WordPress SEO Help plugin <= 6.7.9 - Broken Access Control vulnerability — SEO Help 6.5 Medium2025-04-10
CVE-2025-32242 WordPress Hive Support plugin <= 1.2.5 - Broken Access Control vulnerability — Hive Support 6.5 Medium2025-04-10
CVE-2025-32216 WordPress Spider Elements – Addons for Elementor plugin <= 1.6.6 - Broken Access Control vulnerability — Spider Elements 6.4 Medium2025-04-10
CVE-2025-32221 WordPress EazyDocs plugin <= 2.7.1 - Broken Access Control vulnerability — EazyDocs 5.4 Medium2025-04-10
CVE-2025-32213 WordPress Flo Forms plugin <= 1.0.43 - Broken Access Control vulnerability — Flo Forms 6.5 Medium2025-04-10
CVE-2025-32210 WordPress CM Registration and Invitation Codes plugin <= 2.5.6 - Broken Access Control vulnerability — CM Registration and Invitation Codes 6.5 Medium2025-04-10
CVE-2025-32212 WordPress Specia Companion plugin <= 6.3 - Broken Access Control vulnerability — Specia Companion 6.5 Medium2025-04-10
CVE-2025-32208 WordPress Hive Support plugin <= 1.2.5 - Broken Access Control vulnerability — Hive Support 6.5 Medium2025-04-10
CVE-2025-3417 Embedder 1.3 - 1.3.5 - Authenticated (Subscriber+) Arbitrary Options Update — Embedder 8.8 High2025-04-10
CVE-2025-2719 Swatchly – WooCommerce Variation Swatches for Products (product attributes: Image swatch, Color swatches, Label swatches) 1.2.8 - 1.4.0 - Missing Authorization to Authenticated (Subscriber+) Limited Options Update — Swatchly – WooCommerce Variation Swatches for Products (product attributes: Image swatch, Color swatches, Label swatches) 6.5 Medium2025-04-10
CVE-2025-26888 WordPress WooCommerce Multilingual & Multicurrency plugin <= 5.3.8 - Broken Access Control vulnerability — WooCommerce Multilingual & Multicurrency 5.3 Medium2025-04-09
CVE-2025-26901 WordPress Brizy Pro plugin <= 2.6.1 - Broken Access Control vulnerability — Brizy Pro 4.3 Medium2025-04-09

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5531 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.