Vulnerabilities > Missing Authorization

DATE	CVE	VULNERABILITY TITLE	RISK
2022-01-05	CVE-2022-22107	Missing Authorization vulnerability in Daybydaycrm Daybyday CRM 2.2.0 In Daybyday CRM, versions 2.0.0 through 2.2.0 are vulnerable to Missing Authorization. network low complexity daybydaycrm CWE-862	4.3
2022-01-05	CVE-2022-22108	Missing Authorization vulnerability in Daybydaycrm Daybyday CRM 2.2.0 In Daybyday CRM, versions 2.0.0 through 2.2.0 are vulnerable to Missing Authorization. network low complexity daybydaycrm CWE-862	4.3
2022-01-05	CVE-2022-22111	Missing Authorization vulnerability in Daybydaycrm Daybyday CRM 2.2.0 In DayByDay CRM, version 2.2.0 is vulnerable to missing authorization. network low complexity daybydaycrm CWE-862	8.8
2021-12-28	CVE-2021-20873	Missing Authorization vulnerability in Yappli Yappli is an application development platform which provides the function to access a requested URL using Custom URL Scheme. network low complexity yappli CWE-862	8.1
2021-12-27	CVE-2021-24988	Missing Authorization vulnerability in Wprssaggregator WP RSS Aggregator The WP RSS Aggregator WordPress plugin before 4.19.3 does not sanitise and escape data before outputting it in the System Info admin dashboard, which could lead to a Stored XSS issue due to the wprss_dismiss_addon_notice AJAX action missing authorisation and CSRF checks, allowing any authenticated users, such as subscriber to call it and set a malicious payload in the addon parameter. network low complexity wprssaggregator CWE-862	5.4
2021-12-26	CVE-2021-37572	Missing Authorization vulnerability in Mediatek products MediaTek microchips, as used in NETGEAR devices through 2021-11-11 and other devices, mishandle IEEE 1905 protocols. network low complexity mediatek CWE-862	7.5
2021-12-17	CVE-2021-0673	Missing Authorization vulnerability in Google Android 10.0/11.0/12.0 In Audio Aurisys HAL, there is a possible permission bypass due to a missing permission check. local low complexity google CWE-862	7.8
2021-12-17	CVE-2021-40853	Missing Authorization vulnerability in Tcman GIM 11.0/8.0 TCMAN GIM does not perform an authorization check when trying to access determined resources. network low complexity tcman CWE-862	7.2
2021-12-17	CVE-2021-44857	Missing Authorization vulnerability in Mediawiki An issue was discovered in MediaWiki before 1.35.5, 1.36.x before 1.36.3, and 1.37.x before 1.37.1. network low complexity mediawiki CWE-862	6.5
2021-12-15	CVE-2021-27857	Missing Authorization vulnerability in Fatpipeinc Ipvpn Firmware and Mpvpn Firmware A missing authorization vulnerability in the web management interface of FatPipe WARP, IPVPN, and MPVPN software prior to versions 10.1.2r60p91 and 10.2.2r42 allows a remote, unauthenticated attacker to download a configuration archive. network low complexity fatpipeinc CWE-862	7.5

Vulnerabilities > Missing Authorization {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Missing Authorization"}]}

Vulnerabilities > Missing Authorization