Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5530

5530 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-21429 Emlog has Broken Access Control (BAC) — emlog 3.8 -2026-01-02
CVE-2025-14047 WP User Frontend <= 4.2.4 - Missing Authorization to Unauthenticated Arbitrary Attachment Deletion — User Frontend: AI Powered Frontend Posting, User Directory, Profile, Membership & User Registration 5.3 Medium2026-01-02
CVE-2025-15406 PHPGurukul Online Course Registration authorization — Online Course Registration 6.3 Medium2026-01-01
CVE-2025-14428 My Sticky Elements <= 2.3.3 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Bulk Lead Deletion — All-in-one Sticky Floating Contact Form, Call, Click to Chat, and 50+ Social Icon Tabs – My Sticky Elements 4.3 Medium2026-01-01
CVE-2025-66144 WordPress Worker for Elementor plugin <= 1.0.10 - Broken Access Control vulnerability — Worker for Elementor 5.4 Medium2025-12-31
CVE-2025-66145 WordPress Worker for WPBakery plugin <= 1.1.1 - Broken Access Control vulnerability — Worker for WPBakery 5.4 Medium2025-12-31
CVE-2025-66146 WordPress Logger for Elementor plugin <= 1.0.9 - Broken Access Control vulnerability — Logger for Elementor 5.4 Medium2025-12-31
CVE-2025-66148 WordPress Conformer for Elementor plugin <= 1.0.7 - Broken Access Control vulnerability — Conformer for Elementor 5.4 Medium2025-12-31
CVE-2025-66149 WordPress UnGrabber plugin <= 3.1.3 - Broken Access Control vulnerability — UnGrabber 5.4 Medium2025-12-31
CVE-2025-66150 WordPress Appender plugin <= 1.1.1 - Broken Access Control vulnerability — Appender 5.4 Medium2025-12-31
CVE-2025-66151 WordPress Countdowner for Elementor plugin <= 1.0.4 - Broken Access Control vulnerability — Countdowner for Elementor 5.4 Medium2025-12-31
CVE-2025-66152 WordPress Criptopayer for Elementor plugin <= 1.0.1 - Broken Access Control vulnerability — Criptopayer for Elementor 5.4 Medium2025-12-31
CVE-2025-66153 WordPress Headinger for Elementor plugin <= 1.1.4 - Broken Access Control vulnerability — Headinger for Elementor 5.4 Medium2025-12-31
CVE-2025-66154 WordPress Couponer for Elementor plugin <= 1.1.7 - Broken Access Control vulnerability — Couponer for Elementor 5.4 Medium2025-12-31
CVE-2025-66155 WordPress Questionar for Elementor plugin <= 1.1.7 - Broken Access Control vulnerability — Questionar for Elementor 5.4 Medium2025-12-31
CVE-2025-66156 WordPress Watcher for Elementor plugin <= 1.0.9 - Broken Access Control vulnerability — Watcher for Elementor 5.4 Medium2025-12-31
CVE-2025-66157 WordPress Sliper for Elementor plugin <= 1.0.10 - Broken Access Control vulnerability — Sliper for Elementor 5.4 Medium2025-12-31
CVE-2025-66158 WordPress Gmaper for Elementor plugin <= 1.0.9 - Broken Access Control vulnerability — Gmaper for Elementor 5.4 Medium2025-12-31
CVE-2025-66159 WordPress Walker for Elementor plugin <= 1.1.6 - Broken Access Control vulnerability — Walker for Elementor 5.4 Medium2025-12-31
CVE-2025-66160 WordPress Select Graphist for Elementor Graphist for Elementor plugin <= 1.2.10 - Broken Access Control vulnerability — Select Graphist for Elementor Graphist for Elementor 5.4 Medium2025-12-31
CVE-2025-62874 WordPress AnyComment plugin <= 0.3.6 - Broken Access Control vulnerability — AnyComment 4.3 Medium2025-12-31
CVE-2025-62099 WordPress Signature Add-On for Gravity Forms plugin <= 1.8.6 - Broken Access Control vulnerability — Signature Add-On for Gravity Forms 4.3 Medium2025-12-31
CVE-2025-63038 WordPress WP Custom Admin Interface plugin <= 7.40 - Broken Access Control vulnerability — WP Custom Admin Interface 4.3 Medium2025-12-31
CVE-2025-62078 WordPress Easy Upload Files During Checkout plugin <= 3.0.0 - Broken Access Control vulnerability — Easy Upload Files During Checkout 4.3 Medium2025-12-31
CVE-2025-49339 WordPress Direct Payments WP plugin <= 1.3.2 - Broken Access Control vulnerability — Direct Payments WP 4.3 Medium2025-12-31
CVE-2025-62115 WordPress Hide Plugins plugin <= 1.0.4 - Broken Access Control vulnerability — Hide Plugins 4.3 Medium2025-12-31
CVE-2025-62087 WordPress Sticky Notes for WP Dashboard plugin <= 1.2.4 - Broken Access Control vulnerability — Sticky Notes for WP Dashboard 4.3 Medium2025-12-31
CVE-2025-49356 WordPress Orders Chat for WooCommerce plugin <= 1.2.0 - Broken Access Control vulnerability — Orders Chat for WooCommerce 4.3 Medium2025-12-31
CVE-2025-63004 WordPress All in One Accessibility plugin <= 1.15 - Broken Access Control vulnerability — All in One Accessibility 4.3 Medium2025-12-31
CVE-2025-62130 WordPress Accordion Slider Gallery plugin <= 2.7 - Broken Access Control vulnerability — Accordion Slider Gallery 4.3 Medium2025-12-31

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.