CWE-862 CVEs and Security Vulnerabilities

Filtered by CWE-862

Search

Switch to Advanced Search (Beta)

Total 7741 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-51679	1 Bulkgate	1 Sms Plugin For Woocommerce	2024-11-21	5.4 Medium
Missing Authorization vulnerability in BulkGate BulkGate SMS Plugin for WooCommerce.This issue affects BulkGate SMS Plugin for WooCommerce: from n/a through 3.0.2.
CVE-2023-51671	1 Funnelkit	1 Funnelkit Checkout	2024-11-21	5.4 Medium
Missing Authorization vulnerability in FunnelKit FunnelKit Checkout.This issue affects FunnelKit Checkout: from n/a through 3.10.3.
CVE-2023-51670	1 Funnelkit	1 Funnelkit Checkout	2024-11-21	4.3 Medium
Missing Authorization vulnerability in FunnelKit FunnelKit Checkout.This issue affects FunnelKit Checkout: from n/a through 3.10.3.
CVE-2023-51537	1 Awesomesupport	1 Awesome Support Wordpress Helpdesk \& Support	2024-11-21	5.3 Medium
Missing Authorization vulnerability in Awesome Support Team Awesome Support.This issue affects Awesome Support: from n/a through 6.1.5.
CVE-2023-51524	1 Weformspro	1 Weforms	2024-11-21	4.3 Medium
Missing Authorization vulnerability in weForms.This issue affects weForms: from n/a through 1.6.18.
CVE-2023-51519	1 Soliloquywp	1 Slider	2024-11-21	4.3 Medium
Missing Authorization vulnerability in Soliloquy Team Slider by Soliloquy.This issue affects Slider by Soliloquy: from n/a through 2.7.2.
CVE-2023-51516	1 Businessdirectoryplugin	1 Business Directory	2024-11-21	5.4 Medium
Missing Authorization vulnerability in Business Directory Team Business Directory Plugin.This issue affects Business Directory Plugin: from n/a through 6.3.9.
CVE-2023-51507	1 Expresstech	1 Quiz And Survey Master	2024-11-21	5.3 Medium
Missing Authorization vulnerability in ExpressTech Quiz And Survey Master.This issue affects Quiz And Survey Master: from n/a through 8.1.16.
CVE-2023-51497	1 Woocommerce	1 Shipping Multiple Addresses	2024-11-21	5.4 Medium
Missing Authorization vulnerability in Woo WooCommerce Ship to Multiple Addresses.This issue affects WooCommerce Ship to Multiple Addresses: from n/a through 3.8.9.
CVE-2023-51496	1 Woocommerce	1 Returns And Warranty Requests	2024-11-21	5.3 Medium
Missing Authorization vulnerability in Woo WooCommerce Warranty Requests.This issue affects WooCommerce Warranty Requests: from n/a through 2.2.7.
CVE-2023-51495	1 Woocommerce	1 Returns And Warranty Requests	2024-11-21	6.5 Medium
Missing Authorization vulnerability in Woo WooCommerce Warranty Requests.This issue affects WooCommerce Warranty Requests: from n/a through 2.2.7.
CVE-2023-51494	1 Woocommerce	1 Product Vendors	2024-11-21	5.3 Medium
Missing Authorization vulnerability in Woo WooCommerce Product Vendors.This issue affects WooCommerce Product Vendors: from n/a through 2.2.1.
CVE-2023-51377	1 Wpeverest	1 Everest Forms	2024-11-21	5.3 Medium
Missing Authorization vulnerability in WPEverest Everest Forms.This issue affects Everest Forms: from n/a through 2.0.3.
CVE-2023-51376	1 Brainstormforce	1 Surefeedback	2024-11-21	4.3 Medium
Missing Authorization vulnerability in Brainstorm Force ProjectHuddle Client Site.This issue affects ProjectHuddle Client Site: from n/a through 1.0.34.
CVE-2023-51375	1 Wpdeveloper	1 Embedpress	2024-11-21	4.3 Medium
Missing Authorization vulnerability in WPDeveloper EmbedPress.This issue affects EmbedPress: from n/a through 3.8.3.
CVE-2023-4606	1 Lenovo	104 Thinkagile Hx1331, Thinkagile Hx1331 Firmware, Thinkagile Hx2330 and 101 more	2024-11-21	8.1 High
An authenticated XCC user with Read-Only permission can change a different user’s password through a crafted API command. This affects ThinkSystem v2 and v3 servers with XCC; ThinkSystem v1 servers are not affected.
CVE-2023-4468	1 Poly	4 Lens, Trio 8800, Trio 8800 Firmware and 1 more	2024-11-21	4.3 Medium
A vulnerability was found in Poly Trio 8500, Trio 8800 and Trio C60. It has been classified as problematic. This affects an unknown part of the component Poly Lens Management Cloud Registration. The manipulation leads to missing authorization. It is possible to launch the attack on the physical device. The exploit has been disclosed to the public and may be used. The identifier VDB-249261 was assigned to this vulnerability.
CVE-2023-4434	1 Hamza417	1 Inure	2024-11-21	6.1 Medium
Missing Authorization in GitHub repository hamza417/inure prior to build88.
CVE-2023-4302	1 Jenkins	1 Fortify	2024-11-21	4.2 Medium
A missing permission check in Jenkins Fortify Plugin 22.1.38 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
CVE-2023-4198	1 Dolibarr	1 Dolibarr Erp\/crm	2024-11-21	6.5 Medium
Improper Access Control in Dolibarr ERP CRM <= v17.0.3 allows an unauthorized authenticated user to read a database table containing customer data

« first previous Page 310 of 388. next last »