Vulnerabilities > Missing Authorization
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-08-22 | CVE-2022-2552 | Missing Authorization vulnerability in Snapcreek Duplicator The Duplicator WordPress plugin before 1.4.7 does not authenticate or authorize visitors before displaying information about the system such as server software, php version and full file system path to the site. | 5.3 |
2022-08-18 | CVE-2022-36024 | Missing Authorization vulnerability in Pycord Development Pycord 2.0.0 py-cord is a an API wrapper for Discord written in Python. | 6.5 |
2022-08-16 | CVE-2022-2846 | Missing Authorization vulnerability in Dwbooster Calendar Event Multi View The Calendar Event Multi View WordPress plugin before 1.4.07 does not have any authorisation and CSRF checks in place when creating an event, and is also lacking sanitisation as well as escaping in some of the event fields. | 4.3 |
2022-08-12 | CVE-2022-38183 | Missing Authorization vulnerability in Gitea In Gitea before 1.16.9, it was possible for users to add existing issues to projects. | 6.5 |
2022-08-12 | CVE-2022-20255 | Missing Authorization vulnerability in Google Android 13.0 In SettingsProvider, there is a possible way to read or change the default ringtone due to a missing permission check. | 4.4 |
2022-08-12 | CVE-2022-20259 | Missing Authorization vulnerability in Google Android 13.0 In Telephony, there is a possible leak of ICCID and EID due to a missing permission check. | 5.5 |
2022-08-12 | CVE-2022-20261 | Missing Authorization vulnerability in Google Android 13.0 In LocationManager, there is a possible way to get location information due to a missing permission check. | 2.3 |
2022-08-12 | CVE-2022-20262 | Missing Authorization vulnerability in Google Android 13.0 In ActivityManager, there is a possible way to check another process's capabilities due to a missing permission check. | 3.3 |
2022-08-12 | CVE-2022-20263 | Missing Authorization vulnerability in Google Android 13.0 In ActivityManager, there is a way to read process state for other users due to a missing permission check. | 5.5 |
2022-08-12 | CVE-2022-20267 | Missing Authorization vulnerability in Google Android 13.0 In bluetooth, there is a possible way to enable or disable bluetooth connection without user consent due to a missing permission check. | 3.3 |