Vulnerabilities > Missing Authorization

DATE CVE VULNERABILITY TITLE RISK
2024-11-01 CVE-2024-43968 Missing Authorization vulnerability in Newspack
Broken Access Control vulnerability in Automattic Newspack allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Newspack: from n/a through 3.8.6.
network
low complexity
newspack CWE-862
8.8
2024-11-01 CVE-2024-43973 Missing Authorization vulnerability in Ayecode Getpaid
Missing Authorization vulnerability in AyeCode Ltd GetPaid allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GetPaid: from n/a through 2.8.11.
network
low complexity
ayecode CWE-862
8.8
2024-11-01 CVE-2024-43974 Missing Authorization vulnerability in Cozythemes Revivenews 1.0.0/1.0.1/1.0.2
Missing Authorization vulnerability in CozyThemes ReviveNews allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects ReviveNews: from n/a through 1.0.2.
network
low complexity
cozythemes CWE-862
critical
9.8
2024-11-01 CVE-2024-43979 Missing Authorization vulnerability in Cozythemes Blockbooster
Missing Authorization vulnerability in CozyThemes Blockbooster allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blockbooster: from n/a through 1.0.10.
network
low complexity
cozythemes CWE-862
critical
9.8
2024-11-01 CVE-2024-43980 Missing Authorization vulnerability in Cozythemes Fotawp
Missing Authorization vulnerability in CozyThemes Fota WP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fota WP: from n/a through 1.4.1.
network
low complexity
cozythemes CWE-862
critical
9.8
2024-11-01 CVE-2024-43981 Missing Authorization vulnerability in Ayecode Geodirectory
Missing Authorization vulnerability in AyeCode – WP Business Directory Plugins GeoDirectory allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GeoDirectory: from n/a through 2.3.70.
network
low complexity
ayecode CWE-862
8.8
2024-11-01 CVE-2024-43982 Missing Authorization vulnerability in Geekcodelab Login AS Users
Missing Authorization vulnerability in Geek Code Lab Login As Users allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Login As Users: from n/a through 1.4.3.
network
low complexity
geekcodelab CWE-862
8.8
2024-11-01 CVE-2024-43998 Missing Authorization vulnerability in Websiteinwp Blogpoet
Missing Authorization vulnerability in WebsiteinWP Blogpoet allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Blogpoet: from n/a through 1.0.3.
network
low complexity
websiteinwp CWE-862
critical
9.8
2024-11-01 CVE-2024-44006 Missing Authorization vulnerability in Onthegosystems Woocommerce Multilingual & Multicurrency
Missing Authorization vulnerability in OnTheGoSystems WooCommerce Multilingual & Multicurrency multilingual allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Multilingual & Multicurrency: from n/a through 5.3.6.
network
low complexity
onthegosystems CWE-862
8.8
2024-11-01 CVE-2024-44019 Missing Authorization vulnerability in Renzojohnson Contact Form 7 Campaign Monitor Extension
Missing Authorization vulnerability in Renzo Johnson Contact Form 7 Campaign Monitor Extension allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Contact Form 7 Campaign Monitor Extension: from n/a through 0.4.67.
network
low complexity
renzojohnson CWE-862
critical
9.8