Vulnerabilities > Missing Authorization

DATE	CVE	VULNERABILITY TITLE	RISK
2024-06-09	CVE-2024-33547	Missing Authorization vulnerability in Aa-Team Wzone Missing Authorization vulnerability in AA-Team WZone.This issue affects WZone: from n/a through 14.0.10. network low complexity aa-team CWE-862	8.8
2024-06-09	CVE-2024-34435	Missing Authorization vulnerability in Coderevolution Aiomatic Missing Authorization vulnerability in CodeRevolution Aiomatic.This issue affects Aiomatic: from n/a through 1.9.3. network low complexity coderevolution CWE-862	8.8
2024-06-09	CVE-2024-25092	Missing Authorization vulnerability in Xlplugins Nextmove Missing Authorization vulnerability in XLPlugins NextMove Lite.This issue affects NextMove Lite: from n/a through 2.17.0. network low complexity xlplugins CWE-862	8.8
2024-06-09	CVE-2023-23639	Missing Authorization vulnerability in Mainwp Staging Extension Missing Authorization vulnerability in MainWP MainWP Staging Extension.This issue affects MainWP Staging Extension: from n/a through 4.0.3. network low complexity mainwp CWE-862	8.8
2024-06-09	CVE-2023-51494	Missing Authorization vulnerability in Woocommerce Product Vendors Missing Authorization vulnerability in Woo WooCommerce Product Vendors.This issue affects WooCommerce Product Vendors: from n/a through 2.2.1. network low complexity woocommerce CWE-862 critical	9.8
2024-06-08	CVE-2024-5654	Missing Authorization vulnerability in Gsheetconnector CF7 Google Sheets Connector The CF7 Google Sheets Connector plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'execute_post_data_cg7_free' function in all versions up to, and including, 5.0.9. network low complexity gsheetconnector CWE-862	6.5
2024-06-08	CVE-2024-4468	Missing Authorization vulnerability in Salonbookingsystem Salon Booking System The Salon booking system plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on several functions hooked into admin_init in all versions up to, and including, 9.9. network low complexity salonbookingsystem CWE-862	5.4
2024-06-08	CVE-2024-5087	Missing Authorization vulnerability in Webfactoryltd Minimal Coming Soon & Maintenance Mode The Minimal Coming Soon – Coming Soon Page plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the validate_ajax, deactivate_ajax, and save_ajax functions in all versions up to, and including, 2.38. network low complexity webfactoryltd CWE-862	5.4
2024-06-08	CVE-2024-5770	Missing Authorization vulnerability in Webfactoryltd WP Force SSL The WP Force SSL & HTTPS SSL Redirect plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ajax_save_setting' function in versions up to, and including, 1.66. network low complexity webfactoryltd CWE-862	4.3
2024-06-07	CVE-2024-5382	Missing Authorization vulnerability in Master-Addons Master Addons The Master Addons – Free Widgets, Hover Effects, Toggle, Conditions, Animations for Elementor plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'ma-template' REST API route in all versions up to, and including, 2.0.6.1. network low complexity master-addons CWE-862	5.3

Vulnerabilities > Missing Authorization {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Missing Authorization"}]}

Vulnerabilities > Missing Authorization