Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5527

5527 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-68837 WordPress ELEX WordPress HelpDesk & Customer Ticketing System plugin <= 3.3.5 - Broken Access Control vulnerability — ELEX WordPress HelpDesk & Customer Ticketing System 6.5 Medium2026-02-20
CVE-2025-68564 WordPress Sendy plugin <= 3.4.2 - Broken Access Control vulnerability — Sendy 6.5 Medium2026-02-20
CVE-2025-68834 WordPress Sync Master Sheet – Product Sync with Google Sheet for WooCommerce plugin <= 1.1.3 - Broken Access Control vulnerability — Sync Master Sheet – Product Sync with Google Sheet for WooCommerce 7.5 High2026-02-20
CVE-2025-68542 WordPress Checkout Gateway for IRIS plugin <= 1.3 - Broken Access Control vulnerability — Checkout Gateway for IRIS 6.5 Medium2026-02-20
CVE-2025-68534 WordPress PDF for WPForms plugin <= 6.3.0 - Broken Access Control vulnerability — PDF for WPForms 6.5 Medium2026-02-20
CVE-2025-68069 WordPress Directorist plugin <= 8.6.6 - Broken Access Control vulnerability — Directorist 7.1 High2026-02-20
CVE-2025-68042 WordPress Travelpayouts plugin <= 1.2.2 - Broken Access Control vulnerability — Travelpayouts 6.5 Medium2026-02-20
CVE-2025-68043 WordPress LottieFiles plugin <= 3.0.0 - Broken Access Control vulnerability — LottieFiles 7.3 High2026-02-20
CVE-2025-68050 WordPress Leadpages plugin <= 1.1.3 - Broken Access Control vulnerability — Leadpages 6.5 Medium2026-02-20
CVE-2025-68048 WordPress NextMove Lite plugin <= 2.23.0 - Broken Access Control vulnerability — NextMove Lite 7.5 High2026-02-20
CVE-2025-68025 WordPress Addonify Floating Cart For WooCommerce plugin <= 1.2.17 - Broken Access Control vulnerability — Addonify Floating Cart For WooCommerce 6.5 Medium2026-02-20
CVE-2025-68024 WordPress Addonify – WooCommerce Wishlist plugin <= 2.0.15 - Settings Change vulnerability — Addonify – WooCommerce Wishlist 6.5 Medium2026-02-20
CVE-2025-68028 WordPress GA4WP: Google Analytics for WordPress plugin <= 2.10.0 - Broken Access Control vulnerability — GA4WP: Google Analytics for WordPress 6.5 Medium2026-02-20
CVE-2025-68026 WordPress LC Wizard plugin <= 2.1.1 - Settings Change vulnerability — LC Wizard 6.5 Medium2026-02-20
CVE-2025-68032 WordPress Advanced WC Analytics plugin <= 3.19.0 - Settings Change vulnerability — Advanced WC Analytics 6.5 Medium2026-02-20
CVE-2025-68022 WordPress Plugin BlueX for WooCommerce plugin <= 3.1.6 - Broken Access Control vulnerability — Plugin BlueX for WooCommerce 7.3 High2026-02-20
CVE-2025-68023 WordPress Addonify – Compare Products For WooCommerce plugin <= 1.1.17 - Settings Change vulnerability — Addonify – Compare Products For WooCommerce 6.5 Medium2026-02-20
CVE-2025-68000 WordPress Testimonial Slider plugin <= 2.0.15 - Broken Access Control vulnerability — Testimonial Slider 6.5 Medium2026-02-20
CVE-2025-68005 WordPress Easy Hotel Booking plugin <= 1.9.2 - Broken Access Control vulnerability — Easy Hotel Booking 6.5 Medium2026-02-20
CVE-2025-68021 WordPress ConveyThis plugin <= 269.9 - Broken Access Control vulnerability — ConveyThis 6.5 Medium2026-02-20
CVE-2025-67994 WordPress YayCurrency plugin <= 3.3 - Arbitrary Content Deletion vulnerability — YayCurrency 7.5 High2026-02-20
CVE-2025-67993 WordPress Atarim plugin <= 4.2.1 - Broken Access Control vulnerability — Atarim 6.5 Medium2026-02-20
CVE-2025-67974 WordPress WPLegalPages plugin <= 3.5.4 - Broken Access Control vulnerability — WPLegalPages 7.5 High2026-02-20
CVE-2025-67975 WordPress aDirectory plugin <= 3.0.3 - Broken Access Control vulnerability — aDirectory 6.5 Medium2026-02-20
CVE-2025-67977 WordPress HAPPY plugin <= 1.0.8 - Broken Access Control vulnerability — HAPPY 8.2 High2026-02-20
CVE-2025-67973 WordPress Sunshine Photo Cart plugin <= 3.5.6.2 - Broken Access Control vulnerability — Sunshine Photo Cart 6.5 Medium2026-02-20
CVE-2025-67970 WordPress Schedula plugin <= 1.0 - Broken Access Control vulnerability — Schedula 5.9 Medium2026-02-20
CVE-2025-67969 WordPress UPI QR Code Payment Gateway for WooCommerce plugin <= 1.5.1 - Broken Access Control vulnerability — UPI QR Code Payment Gateway for WooCommerce 9.1AICriticalAI2026-02-20
CVE-2025-67624 WordPress Optimize More! – Images plugin <= 1.1.3 - Broken Access Control vulnerability — Optimize More! – Images 6.5 Medium2026-02-20
CVE-2025-67547 WordPress Konte theme <= 2.4.6 - Broken Access Control vulnerability — Konte 6.5 Medium2026-02-20

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5527 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.