Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5524

5524 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-24677 Find My Blocks < 3.4.0 - Private Post Titles Disclosure — Find My Blocks 5.3 -2021-10-18
CVE-2021-38431 Advantech WebAccess SCADA — WebAccess SCADA 4.3 Medium2021-10-15
CVE-2021-39347 Stripe for WooCommerce 3.0.0 - 3.3.9 Missing Authorization Controls to Financial Account Hijacking — Stripe for WooCommerce 4.3 Medium2021-10-04
CVE-2021-3653 KVM 权限许可和访问控制问题漏洞 — kernel 8.8 -2021-09-29
CVE-2021-24633 Countdown Block < 1.1.2 - Missing Authorisation in AJAX action — Countdown Block 4.3 -2021-09-27
CVE-2021-24639 OMGF < 4.5.4 - Subscriber+ Arbitrary File/Folder Deletion — OMGF | Host Google Fonts Locally 8.1 -2021-09-20
CVE-2021-33704 SAP Business One 安全漏洞 — SAP Business One 8.8 -2021-09-15
CVE-2021-38164 SAP ERP 安全漏洞 — SAP ERP Financial Accounting (RFOPENPOSTING_FR) 5.4 -2021-09-14
CVE-2020-24672 ABB Base Software for SoftControl Remote Code Execution vulnerability — Base Software for SoftControl 9.8 Critical2021-09-08
CVE-2021-34629 SendGrid <= 1.11.8 – Authorization Bypass — SendGrid 4.3 Medium2021-07-30
CVE-2020-36239 Atlassian JIRA Data Center 访问控制错误漏洞 — Jira Data Center 9.8 -2021-07-29
CVE-2021-32748 WOPI API not protected by credentials/IP check — security-advisories 4.3 Medium2021-07-27
CVE-2021-24352 Simple 301 Redirects by BetterLinks - 2.0.0 – 2.0.3 - Unauthenticated Redirect Export — Simple 301 Redirects by BetterLinks 6.1 -2021-06-14
CVE-2021-24353 Simple 301 Redirects by BetterLinks - 2.0.0 – 2.0.3 - Unauthenticated Redirect Import — Simple 301 Redirects by BetterLinks 6.1 -2021-06-14
CVE-2021-24354 Simple 301 Redirects by BetterLinks - 2.0.0-2.0.3 - Arbitrary Plugin Installation — Simple 301 Redirects by BetterLinks 8.8 -2021-06-14
CVE-2021-24355 Simple 301 Redirects by BetterLinks - 2.0.0 – 2.0.3 - Update and Retrieve Wildcard Value — Simple 301 Redirects by BetterLinks 4.3 -2021-06-14
CVE-2021-24356 Simple 301 Redirects by BetterLinks - 2.0.0 – 2.0.3 - Arbitrary Plugin Activation — Simple 301 Redirects by BetterLinks 8.8 -2021-06-14
CVE-2021-22896 Nextcloud Mail 访问控制错误漏洞 — Nextcloud Mail 4.3 -2021-06-11
CVE-2020-10701 Red Hat libvirt 安全漏洞 — libvirt 6.5 -2021-05-27
CVE-2020-10697 Red Hat Ansible 安全漏洞 — Tower 3.3 -2021-05-27
CVE-2021-22891 Citrix Systems Citrix ShareFile 安全漏洞 — Citrix ShareFile Storage Zones Controller 9.8 -2021-05-27
CVE-2018-10866 Red Hat Certification 授权问题漏洞 — redhat-certification 9.1 -2021-05-26
CVE-2018-10865 Red Hat Certification 安全漏洞 — redhat-certification 7.5 -2021-05-26
CVE-2021-21264 Bypass of fix for CVE-2020-26231, Twig sandbox escape — october 5.2 Medium2021-05-03
CVE-2021-22513 Jenkins 安全漏洞 — Micro Focus Application Automation Tools Plugin - Jenkins plugin. 7.1 -2021-04-08
CVE-2021-24184 Tutor LMS < 1.7.7 - Unprotected AJAX including Privilege Escalation — Tutor LMS – eLearning and online course solution 8.8 -2021-04-05
CVE-2021-21326 Horizontal Privilege Escalation — glpi 7.7 High2021-03-08
CVE-2021-21327 Unsafe Reflection in getItemForItemtype() — glpi 6.8 Medium2021-03-08
CVE-2021-21255 entities switch IDOR — glpi 5.8 Medium2021-03-02
CVE-2021-21307 Remote Code Exploit in Lucee Admin — Lucee 8.6 High2021-02-11

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5524 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.