CWE-862 CVEs and Security Vulnerabilities

Filtered by CWE-862

Search

Switch to Advanced Search (Beta)

Total 7690 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2024-30528	1 Spiffyplugins	1 Spiffy Calendar	2024-11-21	5.4 Medium
Missing Authorization vulnerability in Spiffy Plugins Spiffy Calendar.This issue affects Spiffy Calendar: from n/a through 4.9.10.
CVE-2024-30525	1 Moveaddons	1 Move Addons For Elementor	2024-11-21	5.3 Medium
Missing Authorization vulnerability in moveaddons Move Addons for Elementor.This issue affects Move Addons for Elementor: from n/a through 1.2.9.
CVE-2024-30517	1 Slicedinvoices	1 Sliced Invoices	2024-11-21	4.3 Medium
Missing Authorization vulnerability in Sliced Invoices.This issue affects Sliced Invoices: from n/a through 3.9.2.
CVE-2024-30515	1 Pixelite	1 Events Manager	2024-11-21	4.3 Medium
Missing Authorization vulnerability in Pixelite Events Manager.This issue affects Events Manager: from n/a through 6.4.6.4.
CVE-2024-30512	1 Weformspro	1 Weforms	2024-11-21	3.7 Low
Missing Authorization vulnerability in weForms.This issue affects weForms: from n/a through 1.6.20.
CVE-2024-30485	1 Xlplugins	1 Finale	2024-11-21	8.8 High
Missing Authorization vulnerability in XLPlugins Finale Lite.This issue affects Finale Lite: from n/a through 2.18.0.
CVE-2024-30484	1 Risethemes	1 Rt Easy Builder	2024-11-21	4.3 Medium
Missing Authorization vulnerability in RT Easy Builder – Advanced addons for Elementor.This issue affects RT Easy Builder – Advanced addons for Elementor: from n/a through 2.0.
CVE-2024-30470	1 Yithemes	1 Woocommerce Account Funds	2024-11-21	6.5 Medium
Missing Authorization vulnerability in YITH YITH WooCommerce Account Funds Premium.This issue affects YITH WooCommerce Account Funds Premium: from n/a through 1.33.0.
CVE-2024-30467	1 Wpdeveloper	1 Essential Blocks	2024-11-21	6.5 Medium
Missing Authorization vulnerability in WPDeveloper Essential Blocks for Gutenberg.This issue affects Essential Blocks for Gutenberg: from n/a through 4.4.9.
CVE-2024-30466	1 Onthegosystems	1 Woocommerce Multilingual \& Multicurrency	2024-11-21	5.4 Medium
Missing Authorization vulnerability in OnTheGoSystems WooCommerce Multilingual & Multicurrency.This issue affects WooCommerce Multilingual & Multicurrency: from n/a through 5.3.4.
CVE-2024-30465	1 Pagelayer	1 Pagelayer	2024-11-21	6.5 Medium
Missing Authorization vulnerability in Pagelayer Team PageLayer.This issue affects PageLayer: from n/a through 1.8.1.
CVE-2024-30464	1 Wpzoom	1 Social Icons Widget	2024-11-21	5.4 Medium
Missing Authorization vulnerability in WPZOOM Social Icons Widget & Block by WPZOOM.This issue affects Social Icons Widget & Block by WPZOOM: from n/a through 4.2.15.
CVE-2024-25929	1 Multivendorx	1 Product Catalog Mode For Woocommerce	2024-11-21	6.5 Medium
Missing Authorization vulnerability in MultiVendorX Product Catalog Enquiry for WooCommerce by MultiVendorX.This issue affects Product Catalog Enquiry for WooCommerce by MultiVendorX: from n/a through 5.0.5.
CVE-2024-25643	1 Sap	1 Fiori	2024-11-21	4.3 Medium
The SAP Fiori app (My Overtime Request) - version 605, does not perform the necessary authorization checks for an authenticated user which may result in an escalation of privileges. It is possible to manipulate the URLs of data requests to access information that the user should not have access to. There is no impact on integrity and availability.
CVE-2024-25092	1 Xlplugins	1 Nextmove	2024-11-21	8.8 High
Missing Authorization vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.17.0.
CVE-2024-24822	1 Pimcore	1 Admin Classic Bundle	2024-11-21	6.5 Medium
Pimcore's Admin Classic Bundle provides a backend user interface for Pimcore. Prior to version 1.3.3, an attacker can create, delete etc. tags without having the permission to do so. A fix is available in version 1.3.3. As a workaround, one may apply the patch manually.
CVE-2024-24741	1 Sap	1 Master Data Governance For Material Data	2024-11-21	4.3 Medium
SAP Master Data Governance for Material Data - versions 618, 619, 620, 621, 622, 800, 801, 802, 803, 804, does not perform necessary authorization check for an authenticated user, resulting in escalation of privileges. This could allow an attacker to read some sensitive information but no impact to integrity and availability.
CVE-2024-24716	1 Getawesomesupport	1 Awesome Support	2024-11-21	5.4 Medium
Missing Authorization vulnerability in Awesome Support Team Awesome Support.This issue affects Awesome Support: from n/a through 6.1.6.
CVE-2024-24704	1 Addonmaster	1 Load More Anything	2024-11-21	5.4 Medium
Missing Authorization vulnerability in AddonMaster Load More Anything.This issue affects Load More Anything: from n/a through 3.3.3.
CVE-2024-23524	1 Ontraport	1 Pilotpress	2024-11-21	5.3 Medium
Missing Authorization vulnerability in ONTRAPORT Inc. PilotPress.This issue affects PilotPress: from n/a through 2.0.30.

« first previous Page 305 of 385. next last »