Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5531

5531 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-31408 WordPress Zoho Flow plugin <= 2.13.3 - Broken Access Control vulnerability — Zoho Flow 4.3 Medium2025-04-01
CVE-2025-31415 WordPress YayExtra <= 1.5.2 - Broken Access Control Vulnerability — YayExtra 7.6 High2025-04-01
CVE-2025-30926 WordPress King Addons for Elementor plugin <= 24.12.58 - Broken Access Control Vulnerability — King Addons for Elementor 4.3 Medium2025-04-01
CVE-2025-30880 WordPress JS Help Desk plugin <= 2.9.2 - Broken Access Control vulnerability — JS Help Desk 7.5 High2025-04-01
CVE-2025-30797 WordPress Greek Multi Tool – Fix peralinks, accents, auto create menus and more plugin <= 2.3.1 - Broken Access Control Vulnerability — Greek Multi Tool – Fix peralinks, accents, auto create menus and more 7.5 High2025-04-01
CVE-2025-31691 OAuth2 Server - Moderately critical - Access bypass - SA-CONTRIB-2025-020 — OAuth2 Server 7.5 -2025-03-31
CVE-2025-31686 Open Social - Less critical - Access bypass, Information Disclosure - SA-CONTRIB-2025-015 — Open Social 7.5 -2025-03-31
CVE-2025-31685 Open Social - Moderately critical - Access bypass - SA-CONTRIB-2025-014 — Open Social 7.5 -2025-03-31
CVE-2025-31681 Authenticator Login - Critical - Access bypass - SA-CONTRIB-2025-009 — Authenticator Login 7.5 -2025-03-31
CVE-2025-31678 AI (Artificial Intelligence) - Moderately critical - Access bypass, Information Disclosure - SA-CONTRIB-2025-004 — AI (Artificial Intelligence) 9.4 -2025-03-31
CVE-2025-31618 WordPress Connector to CiviCRM with CiviMcRestFace plugin <= 1.0.10 - Broken Access Control vulnerability — Connector to CiviCRM with CiviMcRestFace 5.3 Medium2025-03-31
CVE-2025-31611 WordPress Auto Post After Image Upload plugin <= 1.6 - Broken Access Control vulnerability — Auto Post After Image Upload 4.3 Medium2025-03-31
CVE-2025-31609 WordPress WPCargo Track & Trace plugin <= 8.0.2 - Insecure Direct Object References (IDOR) vulnerability — WPCargo Track & Trace 4.3 Medium2025-03-31
CVE-2025-31606 WordPress SP Blog Designer plugin <= 1.0.0 - Arbitrary Shortcode Execution vulnerability — SP Blog Designer 4.8 Medium2025-03-31
CVE-2025-31603 WordPress CF7 Spreadsheets plugin <= 2.3.2 - Settings Change vulnerability — CF7 Spreadsheets 5.4 Medium2025-03-31
CVE-2025-31596 WordPress Chat by Chatwee plugin <= 2.1.3 - Broken Access Control vulnerability — Chat by Chatwee 4.3 Medium2025-03-31
CVE-2025-31584 WordPress Elfsight Testimonials Slider plugin <= 1.0.1 - Broken Access Control vulnerability — Elfsight Testimonials Slider 5.4 Medium2025-03-31
CVE-2025-31576 WordPress PostmarkApp Email Integrator plugin <= 2.4 - Broken Access Control vulnerability — PostmarkApp Email Integrator 4.3 Medium2025-03-31
CVE-2025-31555 WordPress ContentMX Content Publisher plugin <= 1.0.6 - Broken Access Control vulnerability — ContentMX Content Publisher 5.4 Medium2025-03-31
CVE-2025-31546 WordPress Swiss Toolkit For WP plugin <= 1.4.0 - Broken Access Control vulnerability — Swiss Toolkit For WP 4.3 Medium2025-03-31
CVE-2025-31545 WordPress Safe Ai Malware Protection for WP plugin <= 1.0.20 - Broken Access Control vulnerability — Safe Ai Malware Protection for WP 5.4 Medium2025-03-31
CVE-2025-31544 WordPress Swiss Toolkit For WP plugin <= 1.4.5 - Broken Access Control vulnerability — Swiss Toolkit For WP 4.3 Medium2025-03-31
CVE-2025-31540 WordPress ACME Divi Modules plugin <= 1.3.5 - Broken Access Control vulnerability — ACME Divi Modules 4.3 Medium2025-03-31
CVE-2025-31539 WordPress Cryptocurrency Widgets Pack plugin <= 2.0.1 - Broken Access Control vulnerability — Cryptocurrency Widgets Pack 6.5 Medium2025-03-31
CVE-2025-31533 WordPress Salesmate Add-On for Gravity Forms plugin <= 2.0.3 - Broken Access Control vulnerability — Salesmate Add-On for Gravity Forms 5.3 Medium2025-03-31
CVE-2025-31529 WordPress Slider Path for Elementor plugin <= 3.0.0 - Broken Access Control vulnerability — Slider Path for Elementor 4.3 Medium2025-03-31
CVE-2025-31530 WordPress Google SEO Pressor Snippet plugin <= 2.0 - Broken Access Control vulnerability — Google SEO Pressor Snippet 4.3 Medium2025-03-31
CVE-2025-31528 WordPress StaticPress plugin <= 0.4.5 - Broken Access Control vulnerability — StaticPress 4.3 Medium2025-03-31
CVE-2025-31376 WordPress NanoSupport plugin <= 0.6.0 - Broken Access Control vulnerability — NanoSupport 4.3 Medium2025-03-31
CVE-2025-31386 WordPress Simple:Press plugin <= 6.11.5 - Broken Access Control vulnerability — Simple:Press 5.3 Medium2025-03-31

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5531 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.