CWE-862: Missing Authorization

The ClickDesigns WordPress plugin has an authentication bypass vulnerability that allows unauthenticated attackers to modify or delete the plugin's AP...

An improper access control vulnerability in the AsusSAIO.sys driver allows attackers to send crafted IOCTL requests to misuse driver functionality. Th...

This CVE describes a missing authorization vulnerability in the QuantumCloud Floating Action Buttons WordPress plugin that allows attackers to access ...

This CVE describes a Missing Authorization vulnerability in the Seers WordPress plugin that allows attackers to exploit incorrectly configured access ...

This CVE describes a Missing Authorization vulnerability in the WordPress Generate Dummy Posts plugin that allows attackers to exploit incorrectly con...

This CVE describes a missing authorization vulnerability in the AtomChat WordPress plugin that allows attackers to bypass access controls. It affects ...

This CVE describes a Missing Authorization vulnerability in the WPDO DoLogin Security WordPress plugin that allows attackers to bypass access controls...

This CVE describes a Missing Authorization vulnerability in the wpDiscuz WordPress plugin that allows attackers to exploit incorrectly configured acce...

This CVE describes a missing authorization vulnerability in the Poll Maker WordPress plugin that allows attackers to exploit incorrectly configured ac...

This CVE describes a Missing Authorization vulnerability in the DX Delete Attached Media WordPress plugin that allows attackers to exploit incorrectly...

This CVE describes a missing authorization vulnerability in Kali Forms WordPress plugin that allows attackers to bypass access controls and perform un...

This CVE describes a Missing Authorization vulnerability in the WP Job Openings WordPress plugin by AWSM Innovations, allowing attackers to exploit in...

This CVE describes a Missing Authorization vulnerability in Schema App Structured Data WordPress plugin that allows attackers to exploit incorrectly c...

This CVE describes a Missing Authorization vulnerability in the My Wp Brand WordPress plugin that allows unauthorized users to access administrative f...

This vulnerability in JetBrains TeamCity allows unauthorized users to modify build logs due to improper access control. It affects organizations using...

This CVE describes a Missing Authorization vulnerability in the Spreadr Woocommerce WordPress plugin that allows attackers to access functionality not...

This CVE describes a Missing Authorization vulnerability in the WordPress Job Board Manager plugin that allows attackers to bypass access controls. It...

This CVE describes a missing authorization vulnerability in the Pixelgrade PixProof WordPress plugin that allows attackers to access functionality not...

This CVE describes a missing authorization vulnerability in the BeRocket Brands for WooCommerce WordPress plugin that allows attackers to bypass acces...

This CVE describes a missing authorization vulnerability in the Carousel Slider WordPress plugin that allows attackers to exploit incorrectly configur...

This vulnerability allows attackers to bypass authorization controls in the WiserNotify Social Proof WordPress plugin, potentially accessing restricte...

This CVE describes a Missing Authorization vulnerability in the Easy Digital Downloads WordPress plugin that allows attackers to exploit incorrectly c...

This vulnerability allows attackers to bypass authorization controls in the WP OnlineSupport Essential Plugin Accordion and Accordion Slider for WordP...

This CVE describes a missing authorization vulnerability in the Booster Elementor Addons WordPress plugin that allows attackers to exploit incorrectly...

This CVE describes a missing authorization vulnerability in the Checkout with Zelle on Woocommerce WordPress plugin that allows attackers to bypass ac...

This vulnerability allows attackers to manipulate star ratings on WordPress sites without proper authorization by exploiting IP spoofing. It affects a...

This CVE describes a missing authorization vulnerability in The Events Calendar WordPress plugin that allows attackers to bypass access controls and p...

This CVE describes a missing authorization vulnerability in the YITH WooCommerce Waiting List plugin for WordPress. It allows attackers to bypass acce...

This CVE describes a missing authorization vulnerability in the Zippy WordPress plugin that allows attackers to bypass access controls. Attackers can ...

This CVE describes a missing authorization vulnerability in the WooCommerce Predictive Search plugin that allows attackers to bypass access controls a...

This CVE describes a Missing Authorization vulnerability in the 8Degree Themes Coming Soon Landing Page and Maintenance Mode WordPress plugin that all...

This CVE describes a missing authorization vulnerability in the Survey Maker WordPress plugin that allows attackers to bypass access controls. It affe...

This CVE describes a missing authorization vulnerability in the WordPress plugin 'Trending/Popular Post Slider and Widget' that allows attackers to ex...

This CVE describes a Missing Authorization vulnerability in the Pie Register Premium WordPress plugin that allows unauthorized users to access functio...

This CVE describes a missing authorization vulnerability in the ProfilePress WordPress plugin that allows unauthorized users to access restricted func...

This CVE describes a missing authorization vulnerability in the WordPress plugin 'All-in-one Floating Contact Form – My Sticky Elements', allowing a...

This CVE describes a missing authorization vulnerability in the Poll Maker WordPress plugin that allows attackers to exploit incorrectly configured ac...

This CVE describes a Missing Authorization vulnerability in the Translate AI Multilingual Solutions Google Language Translator WordPress plugin, allow...

This vulnerability allows attackers to bypass authorization controls in the WP Simple HTML Sitemap WordPress plugin, potentially accessing restricted ...

This CVE describes a missing authorization vulnerability in the Clever Widgets Enhanced Text Widget WordPress plugin. It allows attackers to exploit i...

This CVE describes a Missing Authorization vulnerability in PayTR Taksit Tablosu WordPress plugin that allows attackers to exploit incorrectly configu...

This CVE describes a Missing Authorization vulnerability in the SearchIQ WordPress plugin that allows attackers to exploit incorrectly configured acce...

This CVE describes a missing authorization vulnerability in the WPCafe WordPress plugin that allows attackers to bypass access controls. Attackers can...

This vulnerability allows attackers to bypass authorization controls in the WRC Pricing Tables WordPress plugin, potentially accessing or modifying pr...

This CVE describes a missing authorization vulnerability in the WPEverest User Registration WordPress plugin that allows attackers to bypass access co...

This CVE describes a Missing Authorization vulnerability in the Stamped.io Product Reviews & UGC for WooCommerce WordPress plugin. It allows attackers...

This CVE describes a missing authorization vulnerability in the WordPress Featured Post Creative plugin that allows attackers to bypass access control...

This CVE describes a missing authorization vulnerability in the AWESOME TOGI Product Category Tree WordPress plugin that allows attackers to exploit i...

This CVE describes a Missing Authorization vulnerability in the miniOrange WordPress Social Login and Register plugin that allows attackers to delete ...

This vulnerability allows attackers to bypass authorization controls in the Quick Event Manager WordPress plugin, potentially accessing or modifying d...