Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-862 (授权机制缺失) — Vulnerability Class 5530

5530 vulnerabilities classified as CWE-862 (授权机制缺失). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-54327 Tinycontrol LAN Controller 1.58a Authentication Bypass via Admin Password Change — LAN Controller 9.8 Critical2025-12-30
CVE-2025-62128 WordPress SiteLock Security plugin <= 5.0.1 - Broken Access Control vulnerability — SiteLock Security – WP Hardening, Login Security & Malware Scans 4.3 Medium2025-12-30
CVE-2025-66080 WordPress WP Cookie Notice for GDPR, CCPA & ePrivacy Consent plugin <= 4.0.3 - Broken Access Control vulnerability — WP Cookie Notice for GDPR, CCPA & ePrivacy Consent 5.3 Medium2025-12-30
CVE-2025-14426 Strong Testimonials <= 3.2.18 - Missing Authorization to Authenticated (Contributor+) Rating Meta Update — Strong Testimonials 4.3 Medium2025-12-30
CVE-2025-69093 WordPress ShopMagic plugin <= 4.7.2 - Broken Access Control vulnerability — ShopMagic 5.3 Medium2025-12-30
CVE-2025-69091 WordPress Demo Importer Plus plugin <= 2.0.8 - Broken Access Control vulnerability — Demo Importer Plus 4.3 Medium2025-12-30
CVE-2025-69028 WordPress weForms plugin <= 1.6.25 - Broken Access Control vulnerability — weForms 5.3 Medium2025-12-30
CVE-2025-69031 WordPress Arcane theme <= 3.6.6 - Broken Access Control vulnerability — Arcane 5.3 Medium2025-12-30
CVE-2025-69027 WordPress Product Delivery Date for WooCommerce – Lite plugin <= 3.2.0 - Broken Access Control vulnerability — Product Delivery Date for WooCommerce – Lite 5.3 Medium2025-12-30
CVE-2025-69024 WordPress BizPrint plugin <= 4.6.7 - Broken Access Control vulnerability — BizPrint 6.5 Medium2025-12-30
CVE-2025-69023 WordPress Discussion Board plugin <= 2.5.7 - Broken Access Control vulnerability — Discussion Board 4.3 Medium2025-12-30
CVE-2025-69022 WordPress HR Management Lite plugin <= 3.6 - Broken Access Control vulnerability — HR Management Lite 5.4 Medium2025-12-30
CVE-2025-69015 WordPress Crowdsignal Forms plugin <= 1.7.2 - Broken Access Control vulnerability — Crowdsignal Forms 3.8 Low2025-12-30
CVE-2025-69016 WordPress Shortcodes and extra features for Phlox theme plugin <= 2.17.15 - Broken Access Control vulnerability — Shortcodes and extra features for Phlox theme 4.3 Medium2025-12-30
CVE-2025-69012 WordPress Event Organiser plugin <= 3.12.8 - Broken Access Control vulnerability — Event Organiser 4.3 Medium2025-12-30
CVE-2025-69010 WordPress Themebeez Toolkit plugin <= 1.3.5 - Broken Access Control vulnerability — Themebeez Toolkit 5.3 Medium2025-12-30
CVE-2025-69009 WordPress Medicalequipment theme <= 1.0.9 - Broken Access Control vulnerability — Medicalequipment 5.3 Medium2025-12-30
CVE-2025-69013 WordPress Stratum plugin <= 1.6.1 - Broken Access Control vulnerability — Stratum 4.3 Medium2025-12-30
CVE-2025-68993 WordPress Share, Print and PDF Products for WooCommerce plugin <= 3.1.2 - Broken Access Control vulnerability — Share, Print and PDF Products for WooCommerce 5.3 Medium2025-12-30
CVE-2025-68995 WordPress My Sticky Elements plugin <= 2.3.3 - Broken Access Control vulnerability — My Sticky Elements 4.3 Medium2025-12-30
CVE-2025-68994 WordPress Product Loops for WooCommerce plugin <= 2.1.2 - Broken Access Control vulnerability — Product Loops for WooCommerce 5.3 Medium2025-12-30
CVE-2025-68981 WordPress HomeFix Elementor Portfolio plugin <= 1.0.1 - Broken Access Control vulnerability — HomeFix Elementor Portfolio 5.3 Medium2025-12-30
CVE-2025-68982 WordPress DesignThemes LMS Addon plugin <= 2.6 - Broken Access Control vulnerability — DesignThemes LMS Addon 5.3 Medium2025-12-30
CVE-2025-68980 WordPress WeDesignTech Portfolio plugin <= 1.0.2 - Broken Access Control vulnerability — WeDesignTech Portfolio 5.3 Medium2025-12-30
CVE-2025-68976 WordPress Eagle Booking plugin <= 1.3.4.3 - Settings Change vulnerability — Eagle Booking 5.4 Medium2025-12-30
CVE-2025-68036 WordPress CubeWP plugin <= 1.1.27 - Broken Access Control vulnerability — CubeWP 7.5 High2025-12-29
CVE-2023-41656 WordPress Better Elementor Addons plugin <= 1.3.7 - Broken Access Control vulnerability — Better Elementor Addons 5.4 Medium2025-12-29
CVE-2025-68498 WordPress JetTabs plugin <= 2.2.12 - Broken Access Control vulnerability — JetTabs 6.5 Medium2025-12-29
CVE-2025-68503 WordPress JetBlog plugin <= 2.4.7 - Broken Access Control vulnerability — JetBlog 6.5 Medium2025-12-29
CVE-2025-68861 WordPress Plugin Optimizer plugin <= 1.3.7 - Broken Access Control vulnerability — Plugin Optimizer 7.1 High2025-12-29

Vulnerabilities classified as CWE-862 (授权机制缺失) represent 5530 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.