Vulnerabilities > Missing Authorization

DATE	CVE	VULNERABILITY TITLE	RISK
2025-04-28	CVE-2025-3997	A vulnerability classified as problematic has been found in dazhouda lecms 3.0.3. network low complexity CWE-862	4.3
2025-04-27	CVE-2025-3981	Missing Authorization vulnerability in Wowjoy Internet Doctor Workstation System 1.0 A vulnerability, which was classified as problematic, has been found in wowjoy ?????????????? Internet Doctor Workstation System 1.0. network low complexity wowjoy CWE-862	5.3
2025-04-27	CVE-2025-3980	Missing Authorization vulnerability in Wowjoy Internet Doctor Workstation System 1.0 A vulnerability classified as problematic was found in wowjoy ?????????????? Internet Doctor Workstation System 1.0. network low complexity wowjoy CWE-862	5.3
2025-04-27	CVE-2025-3963	Missing Authorization vulnerability in Withstars Books-Management-System 1.0 A vulnerability, which was classified as critical, has been found in withstars Books-Management-System 1.0. network low complexity withstars CWE-862 critical	9.8
2025-04-27	CVE-2025-3960	Missing Authorization vulnerability in Withstars Books-Management-System 1.0 A vulnerability was found in withstars Books-Management-System 1.0. network low complexity withstars CWE-862 critical	9.8
2025-04-26	CVE-2025-3906	The Integração entre Eduzz e Woocommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wep_opcoes' function in all versions up to, and including, 1.7.5. network low complexity CWE-862	8.8
2025-04-26	CVE-2025-3915	Missing Authorization vulnerability in Aeropage Sync for Airtable The Aeropage Sync for Airtable plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'aeropageDeletePost' function in all versions up to, and including, 3.2.0. network low complexity aeropage CWE-862	4.3
2025-04-25	CVE-2025-3912	The WS Form LITE – Drag & Drop Contact Form Builder for WordPress plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the 'get_config' function in all versions up to, and including, 1.10.35. network low complexity CWE-862	5.3
2025-04-25	CVE-2025-1279	The BM Content Builder plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ux_cb_tools_import_item_ajax AJAX action in all versions up to, and including, 3.16.2.1. network low complexity CWE-862	8.8
2025-04-24	CVE-2021-47662	Due to missing authorization an unauthenticated remote attacker can cause a DoS attack by connecting via HTTPS and triggering the shutdown button. network low complexity CWE-862	7.5

Vulnerabilities > Missing Authorization {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Missing Authorization"}]}

Vulnerabilities > Missing Authorization