CWE-862 (授权机制缺失) — Vulnerability Class 5527

5527 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-53217	WordPress AIO WP Builder Plugin <= 2.0.2 - Broken Access Control Vulnerability — AIO WP Builder	7.6	High	2026-02-20
CVE-2024-54222	WordPress Seraphinite Accelerator plugin <= 2.22.15 - Authenticated Sensitive Data Exposure vulnerability — Seraphinite Accelerator	4.3	Medium	2026-02-20
CVE-2024-43228	WordPress SecuPress Free plugin <= 2.2.5.3 - Broken Access Control vulnerability — SecuPress Free	5.3	Medium	2026-02-20
CVE-2024-34438	WordPress Shared Files plugin <= 1.7.19 - Broken Access Control vulnerability — Shared Files	5.3	Medium	2026-02-20
CVE-2026-2819	Dromara RuoYi-Vue-Plus Workflow deleteByInstanceIds SaServletFilter authorization — RuoYi-Vue-Plus	6.3	Medium	2026-02-20
CVE-2026-26977	Frappe Learning Management System exposes details of unpublished courses to unauthorized users — lms	4.3	-	2026-02-20
CVE-2025-30416	Acronis Cyber Protect 安全漏洞 — Acronis Cyber Protect 16	8.1^AI	High^AI	2026-02-20
CVE-2026-27387	WordPress DirectoryPress plugin <= 3.6.26 - Broken Access Control vulnerability — DirectoryPress	5.4	Medium	2026-02-19
CVE-2026-27368	WordPress Coming Soon Page, Under Construction & Maintenance Mode by SeedProd plugin <= 6.19.8 - Broken Access Control vulnerability — Coming Soon Page, Under Construction & Maintenance Mode by SeedProd	5.3	Medium	2026-02-19
CVE-2026-27328	WordPress EduBlink theme <= 2.0.7 - Broken Access Control vulnerability — EduBlink	5.3	Medium	2026-02-19
CVE-2026-27327	WordPress YayMail – WooCommerce Email Customizer plugin <= 4.3.2 - Broken Access Control vulnerability — YayMail	4.3	Medium	2026-02-19
CVE-2025-15563	Broken Access Control results in Denial of Service in NesterSoft WorkTime — WorkTime (on-prem/cloud)	5.3^AI	Medium^AI	2026-02-19
CVE-2026-26358	Dell Unisphere for PowerMax 安全漏洞 — Unisphere for PowerMax	8.8	High	2026-02-19
CVE-2026-27092	WordPress WPAdverts plugin <= 2.3.0 - Broken Access Control vulnerability — WPAdverts	6.5	Medium	2026-02-19
CVE-2026-27066	WordPress Live sales notification for WooCommerce plugin <= 2.3.60 - Broken Access Control vulnerability — Live sales notification for WooCommerce	5.3	Medium	2026-02-19
CVE-2026-27055	WordPress Penci AI SmartContent Creator plugin <= 2.0 - Broken Access Control vulnerability — Penci AI SmartContent Creator	4.3	Medium	2026-02-19
CVE-2026-25459	WordPress Sober theme <= 3.5.12 - Broken Access Control vulnerability — Sober	4.3	Medium	2026-02-19
CVE-2026-27042	WordPress NotificationX plugin <= 3.2.1 - Broken Access Control vulnerability — NotificationX	5.3	Medium	2026-02-19
CVE-2026-25473	WordPress WZone plugin <= 14.0.31 - Broken Access Control vulnerability — WZone	5.4	Medium	2026-02-19
CVE-2026-25441	WordPress LeadConnector plugin <= 3.0.21 - Broken Access Control vulnerability — LeadConnector	5.3	Medium	2026-02-19
CVE-2026-25423	WordPress Real 3D FlipBook plugin <= 4.19.1 - Broken Access Control vulnerability — Real 3D FlipBook	3.8	Low	2026-02-19
CVE-2026-25420	WordPress MailerLite plugin <= 1.7.18 - Broken Access Control vulnerability — MailerLite	4.3	Medium	2026-02-19
CVE-2026-25419	WordPress UpsellWP plugin <= 2.2.5 - Broken Access Control vulnerability — UpsellWP	4.3	Medium	2026-02-19
CVE-2026-25410	WordPress WP-CORS plugin <= 0.2.2 - Broken Access Control vulnerability — WP-CORS	4.3	Medium	2026-02-19
CVE-2026-25415	WordPress WPBookit Pro plugin <= 1.6.18 - Broken Access Control vulnerability — WPBookit Pro	5.3	Medium	2026-02-19
CVE-2026-25416	WordPress News Kit Elementor Addons plugin <= 1.4.2 - Broken Access Control vulnerability — News Kit Elementor Addons	4.3	Medium	2026-02-19
CVE-2026-25409	WordPress JAMstack Deployments plugin <= 1.1.1 - Broken Access Control vulnerability — JAMstack Deployments	4.3	Medium	2026-02-19
CVE-2026-25408	WordPress Broken Link Notifier plugin <= 1.3.5 - Broken Access Control vulnerability — Broken Link Notifier	5.3	Medium	2026-02-19
CVE-2026-25407	WordPress Cookiebot plugin <= 4.6.4 - Broken Access Control vulnerability — Cookiebot	4.3	Medium	2026-02-19
CVE-2026-25404	WordPress WP Job Manager plugin <= 2.4.0 - Broken Access Control vulnerability — WP Job Manager	5.3	Medium	2026-02-19

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5527 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-862 (授权机制缺失) — Vulnerability Class 5527