Filtered by CWE-862
Total 3274 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-48039 1 Cubewp 1 Cubewp 2024-11-13 4.3 Medium
Missing Authorization vulnerability in CubeWP CubeWP – All-in-One Dynamic Content Framework allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CubeWP – All-in-One Dynamic Content Framework: from n/a through 1.1.15.
CVE-2024-48044 1 Shortpixel 1 Image Optimizer 2024-11-13 5.4 Medium
Missing Authorization vulnerability in ShortPixel – Convert WebP/AVIF & Optimize Images ShortPixel Image Optimizer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ShortPixel Image Optimizer: from n/a through 5.6.3.
CVE-2024-48045 1 Leevio 1 Happy Addons For Elementor 2024-11-13 4.3 Medium
Missing Authorization vulnerability in Leevio Happy Addons for Elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Happy Addons for Elementor: from n/a through 3.12.3.
CVE-2024-43293 1 Wpzoom 1 Recipe Card Blocks For Gutenberg \& Elementor 2024-11-13 4.3 Medium
Missing Authorization vulnerability in WPZOOM Recipe Card Blocks for Gutenberg & Elementor allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Recipe Card Blocks for Gutenberg & Elementor: from n/a through 3.3.1.
CVE-2024-43296 1 Bplugins 1 Html5 Video Player 2024-11-13 4.3 Medium
Missing Authorization vulnerability in bPlugins LLC Flash & HTML5 Video allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Flash & HTML5 Video: from n/a through 2.5.30.
CVE-2024-43297 1 Backupbliss 1 Clone 2024-11-13 4.3 Medium
Missing Authorization vulnerability in Migrate Clone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Clone: from n/a through 2.4.5.
CVE-2024-43298 1 Backupbliss 1 Clone 2024-11-13 4.3 Medium
Missing Authorization vulnerability in Migrate Clone allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Clone: from n/a through 2.4.5.
CVE-2024-43302 1 Fontsplugin 1 Fonts 2024-11-13 4.3 Medium
Missing Authorization vulnerability in Fonts Plugin Fonts allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fonts: from n/a through 3.7.7.
CVE-2024-43310 1 Ukrsolution 1 Print Labels With Barcodes 2024-11-13 6.5 Medium
Missing Authorization vulnerability in UkrSolution Print Barcode Labels for your WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Print Barcode Labels for your WooCommerce products/orders: from n/a through 3.4.9.
CVE-2024-43312 1 Wpclever 1 Wpc Frequently Bought Together For Woocommerce 2024-11-13 5.4 Medium
Missing Authorization vulnerability in WPClever WPC Frequently Bought Together for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WPC Frequently Bought Together for WooCommerce: from n/a through 7.1.9.
CVE-2024-43929 1 Eyecix 1 Jobsearch Wp Job Board 2024-11-12 6.5 Medium
Missing Authorization vulnerability in eyecix JobSearch allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects JobSearch: from n/a through 2.5.4.
CVE-2024-43928 1 Eyecix 1 Jobsearch Wp Job Board 2024-11-12 5.4 Medium
Missing Authorization vulnerability in eyecix JobSearch allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects JobSearch: from n/a through 2.5.4.
CVE-2021-1143 1 Cisco 1 Connected Mobile Experiences 2024-11-12 4.3 Medium
A vulnerability in Cisco Connected Mobile Experiences (CMX) API authorizations could allow an authenticated, remote attacker to enumerate what users exist on the system. The vulnerability is due to a lack of authorization checks for certain API GET requests. An attacker could exploit this vulnerability by sending specific API GET requests to an affected device. A successful exploit could allow the attacker to enumerate users of the CMX system.
CVE-2024-47302 1 Wpmanageninja 1 Fluent Support 2024-11-12 5.3 Medium
Missing Authorization vulnerability in WPManageNinja LLC Fluent Support allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Fluent Support: from n/a through 1.8.0.
CVE-2024-47308 1 Templately 1 Templately 2024-11-12 6.5 Medium
Missing Authorization vulnerability in Templately allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Templately: from n/a through 3.1.2.
CVE-2024-47311 1 Kraftplugins 1 Wheel Of Life 2024-11-12 5.3 Medium
Missing Authorization vulnerability in Kraft Plugins Wheel of Life allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wheel of Life: from n/a through 1.1.8.
CVE-2024-47314 1 Sunshinephotocart 1 Sunshine Photo Cart 2024-11-12 7.1 High
Missing Authorization vulnerability in WP Sunshine Sunshine Photo Cart allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sunshine Photo Cart: from n/a through 3.2.8.
CVE-2024-47317 1 Wpquads 1 Ads 2024-11-12 4.3 Medium
Missing Authorization vulnerability in WP Quads Ads by WPQuads – Adsense Ads, Banner Ads, Popup Ads allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ads by WPQuads – Adsense Ads, Banner Ads, Popup Ads: from n/a through 2.0.84.
CVE-2024-47318 1 Magazine3 1 Pwa For Wp \& Amp 2024-11-12 4.3 Medium
Missing Authorization vulnerability in Magazine3 PWA for WP & AMP allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PWA for WP & AMP: from n/a through 1.7.72.
CVE-2024-47321 1 Androidbubbles 1 Wp Datepicker 2024-11-12 6.5 Medium
Missing Authorization vulnerability in Fahad Mahmood WP Datepicker allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects WP Datepicker: from n/a through 2.1.1.