Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5531

5531 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-31758 WordPress Free Woocommerce Product Table View plugin <= 1.78 - Arbitrary Content Deletion vulnerability — Free Woocommerce Product Table View 6.5 Medium2025-04-03
CVE-2025-31739 WordPress Minimalistic Event Manager plugin <= 1.1.1 - Broken Access Control vulnerability — Minimalistic Event Manager 6.4 Medium2025-04-03
CVE-2025-31729 WordPress WooTumblog plugin <= 2.1.4 - Content Injection vulnerability — WooTumblog 6.5 Medium2025-04-03
CVE-2025-31581 WordPress WP Video Playlist plugin <= 1.1.2 - Settings Change vulnerability — WP Video Playlist 6.5 Medium2025-04-03
CVE-2025-31541 WordPress TuriTop Booking System plugin <= 1.0.10 - Broken Access Control vulnerability — TuriTop Booking System 6.5 Medium2025-04-03
CVE-2025-30916 WordPress Residential Address Detection plugin <= 2.5.4 - Broken Access Control vulnerability — Residential Address Detection 6.5 Medium2025-04-03
CVE-2025-30915 WordPress Small Package Quotes – Worldwide Express Edition plugin <= 5.2.19 - Broken Access Control vulnerability — Small Package Quotes – Worldwide Express Edition 6.5 Medium2025-04-03
CVE-2025-3063 Shopper Approved Reviews 2.0 - 2.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update — Shopper Approved Reviews 8.8 High2025-04-02
CVE-2024-13637 Demo Awesome <= 1.0.3 - Missing Authorization to Authenticated (Subscriber+) Plugin Activation — Demo Awesome 6.5 Medium2025-04-02
CVE-2025-2779 Insert Headers and Footers Code – HT Script <= 1.1.2 - Missing Authorization to Authenticated (Subscriber+) Limited Options Update — Insert Headers and Footers Code – HT Script 6.5 Medium2025-04-02
CVE-2025-31628 WordPress Sliced Invoices plugin <= 3.10.0 - Insecure Direct Object References (IDOR) vulnerability — Sliced Invoices 5.3 Medium2025-04-01
CVE-2025-31580 WordPress Ni WooCommerce Product Enquiry plugin <= 4.1.8 - Broken Access Control vulnerability — Ni WooCommerce Product Enquiry 7.5 High2025-04-01
CVE-2025-31525 WordPress WP Mobile Bottom Menu plugin <= 1.4.0 - Broken Access Control vulnerability — WP Mobile Bottom Menu 4.3 Medium2025-04-01
CVE-2025-30853 WordPress ShortPixel Adaptive Images plugin <= 3.10.0 - Broken Authentication vulnerability — ShortPixel Adaptive Images 5.4 Medium2025-04-01
CVE-2025-30825 WordPress WPC Smart Linked Products plugin <= 1.3.5 - Privilege Escalation vulnerability — WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce 8.8 High2025-04-01
CVE-2025-31887 WordPress MyBookProgress plugin <= 1.0.8 - Broken Access Control vulnerability — MyBookProgress by Stormhill Media 4.3 Medium2025-04-01
CVE-2025-31886 WordPress Social proof testimonials and reviews by Repuso plugin <= 5.21 - Broken Access Control vulnerability — Social proof testimonials and reviews by Repuso 4.3 Medium2025-04-01
CVE-2025-31882 WordPress Webinar Plugin <= 1.33.28 - Broken Access Control vulnerability — WebinarPress 4.3 Medium2025-04-01
CVE-2025-31881 WordPress Pearl plugin <= 1.3.9 - Broken Access Control vulnerability — Pearl 5.4 Medium2025-04-01
CVE-2025-31879 WordPress Barcode Generator for WooCommerce plugin <= 2.0.4 - Settings Change vulnerability — Barcode Generator for WooCommerce 5.4 Medium2025-04-01
CVE-2025-31878 WordPress UPC/EAN/GTIN Code Generator plugin <= 2.0.2 - Settings Change vulnerability — UPC/EAN/GTIN Code Generator 5.4 Medium2025-04-01
CVE-2025-31877 WordPress RestroPress plugin <= 3.2.8 - Broken Access Control vulnerability — RestroPress 4.3 Medium2025-04-01
CVE-2025-31872 WordPress WP Clone any post type Plugin <= 3.6 - Broken Access Control vulnerability — WP Clone any post type 5.3 Medium2025-04-01
CVE-2025-31870 WordPress WP AutoKeyword plugin <= 1.0 - Arbitrary Content Deletion vulnerability — WP AutoKeyword 5.4 Medium2025-04-01
CVE-2025-31868 WordPress JS Job Manager plugin <= 2.0.2 - Broken Access Control vulnerability — JS Job Manager 5.3 Medium2025-04-01
CVE-2025-31866 WordPress ShipDepot for WooCommerce plugin <= 1.2.19 - Broken Access Control vulnerability — ShipDepot for WooCommerce 4.3 Medium2025-04-01
CVE-2025-31865 WordPress CartBoss plugin <= 4.1.2 - Broken Access Control vulnerability — CartBoss 4.3 Medium2025-04-01
CVE-2025-31863 WordPress Agency Toolkit plugin <= 1.0.24 - Broken Access Control vulnerability — Agency Toolkit 5.3 Medium2025-04-01
CVE-2025-31862 WordPress Job Board Manager Plugin <= 2.1.61 - Broken Access Control vulnerability — Job Board Manager 5.3 Medium2025-04-01
CVE-2025-31856 WordPress Export All Post Meta Plugin <= 1.2.1 - Broken Access Control vulnerability — Export All Post Meta 4.3 Medium2025-04-01

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5531 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.