Vulnerabilities > Missing Authorization
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-12 | CVE-2022-3946 | Missing Authorization vulnerability in Collne Welcart E-Commerce The Welcart e-Commerce WordPress plugin before 2.8.4 does not have authorisation and CSRF in an AJAX action, allowing any logged-in user to create, update and delete shipping methods. | 6.5 |
| 2022-12-12 | CVE-2022-3999 | Missing Authorization vulnerability in Dpdgroup Woocommerce Shipping 1.2.11 The DPD Baltic Shipping WordPress plugin before 1.2.57 does not have authorisation and CSRF in an AJAX action, which could allow any authenticated users, such as subscriber to delete arbitrary options from the blog, which could make the blog unavailable. | 8.1 |
| 2022-12-08 | CVE-2022-46158 | Missing Authorization vulnerability in Prestashop PrestaShop is an open-source e-commerce solution. | 4.3 |
| 2022-12-08 | CVE-2022-4366 | Missing Authorization vulnerability in Daloradius Missing Authorization in GitHub repository lirantal/daloradius prior to master branch. | 7.5 |
| 2022-12-07 | CVE-2022-43581 | Missing Authorization vulnerability in IBM Content Navigator IBM Content Navigator 3.0.0, 3.0.1, 3.0.2, 3.0.3, 3.0.4, 3.0.5, 3.0.6, 3.0.7, 3.0.8, 3.0.9, 3.0.10, 3.0.11, and 3.0.12 is vulnerable to missing authorization and could allow an authenticated user to load external plugins and execute code. | 8.8 |
| 2022-12-06 | CVE-2022-39090 | Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In power management service, there is a missing permission check. | 7.8 |
| 2022-12-06 | CVE-2022-39091 | Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In power management service, there is a missing permission check. | 7.8 |
| 2022-12-06 | CVE-2022-39092 | Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In power management service, there is a missing permission check. | 7.8 |
| 2022-12-06 | CVE-2022-39093 | Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In power management service, there is a missing permission check. | 7.8 |
| 2022-12-06 | CVE-2022-39094 | Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In power management service, there is a missing permission check. | 7.8 |