Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5527

5527 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-1299 Nomad Job Submitter Privilege Escalation Using Workload Identity — Nomad 7.4 High2023-03-14
CVE-2023-27462 Siemens RUGGEDCOM CROSSBOW 安全漏洞 — RUGGEDCOM CROSSBOW 3.1 Low2023-03-14
CVE-2023-27310 Siemens RUGGEDCOM CROSSBOW 安全漏洞 — RUGGEDCOM CROSSBOW 6.6 Medium2023-03-14
CVE-2023-27309 Siemens RUGGEDCOM CROSSBOW 安全漏洞 — RUGGEDCOM CROSSBOW 5.0 Medium2023-03-14
CVE-2023-1335 RapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'ucss_connect' — RapidLoad AI – Optimize Web Vitals Automatically 4.3 Medium2023-03-10
CVE-2023-1338 RapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'attach_rule' — RapidLoad AI – Optimize Web Vitals Automatically 4.3 Medium2023-03-10
CVE-2023-1337 RapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'clear_uucss_logs' — RapidLoad AI – Optimize Web Vitals Automatically 4.3 Medium2023-03-10
CVE-2023-1336 RapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'ajax_deactivate' — RapidLoad AI – Optimize Web Vitals Automatically 4.3 Medium2023-03-10
CVE-2023-1339 RapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'uucss_update_rule' — RapidLoad AI – Optimize Web Vitals Automatically 4.3 Medium2023-03-10
CVE-2023-1334 RapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'queue_posts' — RapidLoad AI – Optimize Web Vitals Automatically 4.3 Medium2023-03-10
CVE-2023-1333 RapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'clear_page_cache' — RapidLoad AI – Optimize Web Vitals Automatically 4.3 Medium2023-03-10
CVE-2023-25573 Improper access control to download file in metersphere — metersphere 8.6 High2023-03-09
CVE-2023-20064 Cisco IOS XR Software Bootloader Unauthenticated Information Disclosure Vulnerability — Cisco IOS XR Software 4.6 Medium2023-03-09
CVE-2020-36670 NEX-Forms <= 7.7.1 - Missing Authorization on Various AJAX Actions — NEX-Forms – Ultimate Forms Plugin for WordPress 6.3 Medium2023-03-07
CVE-2022-4932 Total Upkeep <= 1.14.13 - Missing Authorization to Authenticated (Subscriber+) Information Disclosure — Total Upkeep – WordPress Backup Plugin plus Restore & Migrate by BoldGrid 4.3 Medium2023-03-07
CVE-2021-4331 The Plus Addons for Elementor PRO <= 4.1.9 & The Plus Addons for Elementor <= 2.0.6 - Authenticated (Contributor+) Privilege Escalation — The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce 8.8 High2023-03-07
CVE-2020-36667 JetBackup – WP Backup, Migrate & Restore <= 1.4.1 - Missing Authorization to Unauthorized Backup Location Change — JetBackup – Backup, Restore & Migrate 5.4 Medium2023-03-07
CVE-2023-22858 Stored cross-site scripting in BlogEngine.NET version 3.3.8.0 — BlogEngine.NET 5.3 Medium2023-03-06
CVE-2023-1114 Improper Input Validation on e-Belediye — e-Belediye 9.8 Critical2023-03-01
CVE-2023-1022 WP Meta SEO <= 4.5.3 - Missing Authorization in 'wpmsGGSaveInformation' — WP Meta SEO 5.4 Medium2023-02-28
CVE-2023-1023 WP Meta SEO <= 4.5.3 - Missing Authorization in 'saveSitemapSettings' — WP Meta SEO 5.4 Medium2023-02-28
CVE-2023-1024 WP Meta SEO <= 4.5.3 - Missing Authorization in 'regenerateSitemaps' — WP Meta SEO 4.3 Medium2023-02-28
CVE-2023-1026 WP Meta SEO <= 4.5.3 - Missing Authorization in 'listPostsCategory' — WP Meta SEO 4.3 Medium2023-02-28
CVE-2023-1027 WP Meta SEO <= 4.5.3 - Missing Authorization in 'checkAllCategoryInSitemap' — WP Meta SEO 4.3 Medium2023-02-28
CVE-2023-27264 IDOR: Updating a playbook via the Playbooks API — Mattermost 7.1 High2023-02-27
CVE-2023-27263 IDOR: Accessing playbook runs via the Playbooks Runs API — Mattermost 4.3 Medium2023-02-27
CVE-2023-26035 ZoneMinder vulnerable to Missing Authorization — zoneminder 7.2 High2023-02-25
CVE-2022-48318 Insecure access control mechanisms for RestAPI documentation — Checkmk 5.3 Medium2023-02-20
CVE-2023-23848 Jenkins Plugin Synopsys Coverity 安全漏洞 — Synopsys Jenkins Coverity Plugin 6.5 -2023-02-15
CVE-2023-23850 Jenkins Plugin Synopsys Coverity 安全漏洞 — Synopsys Jenkins Coverity Plugin 4.3 -2023-02-15

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5527 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.