Vulnerabilities > Missing Authorization
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-02-14 | CVE-2021-25018 | Missing Authorization vulnerability in Najeebmedia Ppom for Woocommerce The PPOM for WooCommerce WordPress plugin before 24.0 does not have authorisation and CSRF checks in the ppom_settings_panel_action AJAX action, allowing any authenticated to call it and set arbitrary settings. | 3.5 |
2022-02-11 | CVE-2021-39662 | Missing Authorization vulnerability in Google Android 11.0/12.0 In checkUriPermission of MediaProvider.java , there is a possible way to gain access to the content of media provider collections due to a missing permission check. | 7.2 |
2022-02-09 | CVE-2022-20024 | Missing Authorization vulnerability in Google Android 11.0/12.0 In system service, there is a possible permission bypass due to a missing permission check. | 4.6 |
2022-02-09 | CVE-2022-20041 | Missing Authorization vulnerability in Google Android In Bluetooth, there is a possible escalation of privilege due to a missing permission check. | 4.6 |
2022-02-09 | CVE-2022-20043 | Missing Authorization vulnerability in Google Android In Bluetooth, there is a possible escalation of privilege due to a missing permission check. | 4.6 |
2022-02-09 | CVE-2022-22535 | Missing Authorization vulnerability in SAP ERP Human Capital Management 600/604/608 SAP ERP HCM Portugal - versions 600, 604, 608, does not perform necessary authorization checks for a report that reads the payroll data of employees in a certain area. | 6.5 |
2022-02-09 | CVE-2022-24317 | Missing Authorization vulnerability in Schneider-Electric Interactive Graphical Scada System Data Server A CWE-862: Missing Authorization vulnerability exists that could cause information exposure when an attacker sends a specific message. | 5.0 |
2022-02-09 | CVE-2022-23621 | Missing Authorization vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 4.9 |
2022-02-09 | CVE-2022-23617 | Missing Authorization vulnerability in Xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. | 4.0 |
2022-02-09 | CVE-2022-21660 | Missing Authorization vulnerability in Gin-Vue-Admin Project Gin-Vue-Admin Gin-vue-admin is a backstage management system based on vue and gin. | 5.5 |