CWE-CWE-862 CVE - Yack CVE

Filtered by CWE-862

Total 6931 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2023-52224			2024-11-21	N/A	4.3 MEDIUM
Missing Authorization vulnerability in Revolut Revolut Gateway for WooCommerce.This issue affects Revolut Gateway for WooCommerce: from n/a through 4.9.7.
CVE-2023-52220			2024-11-21	N/A	4.3 MEDIUM
Missing Authorization vulnerability in MonsterInsights Google Analytics by Monster Insights.This issue affects Google Analytics by Monster Insights: from n/a through 8.21.0.
CVE-2023-52217	1 Wedevs	1 Woocommerce Conversion Tracking	2024-11-21	N/A	4.3 MEDIUM
Missing Authorization vulnerability in weDevs WooCommerce Conversion Tracking.This issue affects WooCommerce Conversion Tracking: from n/a through 2.0.11.
CVE-2023-52211			2024-11-21	N/A	5.3 MEDIUM
Missing Authorization vulnerability in Automattic WP Job Manager.This issue affects WP Job Manager: from n/a through 2.0.0.
CVE-2023-52199			2024-11-21	N/A	6.5 MEDIUM
Missing Authorization vulnerability in Matthias Pfefferle & Automattic ActivityPub.This issue affects ActivityPub: from n/a through 1.0.5.
CVE-2023-52186	1 Woo	1 Product Vendors	2024-11-21	N/A	5.3 MEDIUM
Missing Authorization vulnerability in Woo WooCommerce Product Vendors.This issue affects WooCommerce Product Vendors: from n/a through 2.2.2.
CVE-2023-52183			2024-11-21	N/A	5.4 MEDIUM
Missing Authorization vulnerability in WebToffee WordPress Backup & Migration.This issue affects WordPress Backup & Migration: from n/a through 1.4.3.
CVE-2023-52179			2024-11-21	N/A	5.4 MEDIUM
Missing Authorization vulnerability in WebCodingPlace Product Expiry for WooCommerce.This issue affects Product Expiry for WooCommerce: from n/a through 2.5.
CVE-2023-52117	1 Metagauss	1 Profilegrid	2024-11-21	N/A	4.3 MEDIUM
Missing Authorization vulnerability in Metagauss ProfileGrid.This issue affects ProfileGrid: from n/a through 5.6.6.
CVE-2023-51682	1 Ibericode	1 Mailchimp	2024-11-21	N/A	5.3 MEDIUM
Missing Authorization vulnerability in ibericode MC4WP.This issue affects MC4WP: from n/a through 4.9.9.
CVE-2023-51680	1 Technovama	1 Quotes For Woocommerce	2024-11-21	N/A	4.3 MEDIUM
Missing Authorization vulnerability in TechnoVama Quotes for WooCommerce.This issue affects Quotes for WooCommerce: from n/a through 2.0.1.
CVE-2023-51679	1 Bulkgate	1 Sms Plugin For Woocommerce	2024-11-21	N/A	5.4 MEDIUM
Missing Authorization vulnerability in BulkGate BulkGate SMS Plugin for WooCommerce.This issue affects BulkGate SMS Plugin for WooCommerce: from n/a through 3.0.2.
CVE-2023-51672			2024-11-21	N/A	7.5 HIGH
Missing Authorization vulnerability in FunnelKit FunnelKit Checkout.This issue affects FunnelKit Checkout: from n/a through 3.10.3.
CVE-2023-51671	1 Funnelkit	1 Funnelkit Checkout	2024-11-21	N/A	5.4 MEDIUM
Missing Authorization vulnerability in FunnelKit FunnelKit Checkout.This issue affects FunnelKit Checkout: from n/a through 3.10.3.
CVE-2023-51670	1 Funnelkit	1 Funnelkit Checkout	2024-11-21	N/A	4.3 MEDIUM
Missing Authorization vulnerability in FunnelKit FunnelKit Checkout.This issue affects FunnelKit Checkout: from n/a through 3.10.3.
CVE-2023-51650	1 Apache	1 Hertzbeat	2024-11-21	N/A	7.5 HIGH
Hertzbeat is an open source, real-time monitoring system. Prior to version 1.4.1, Spring Boot permission configuration issues caused unauthorized access vulnerabilities to three interfaces. This could result in disclosure of sensitive server information. Version 1.4.1 fixes this issue.
CVE-2023-51537	1 Awesomesupport	1 Awesome Support Wordpress Helpdesk \& Support	2024-11-21	N/A	5.3 MEDIUM
Missing Authorization vulnerability in Awesome Support Team Awesome Support.This issue affects Awesome Support: from n/a through 6.1.5.
CVE-2023-51526			2024-11-21	N/A	4.3 MEDIUM
Missing Authorization vulnerability in Brett Shumaker Simple Staff List.This issue affects Simple Staff List: from n/a through 2.2.4.
CVE-2023-51524	1 Weformspro	1 Weforms	2024-11-21	N/A	4.3 MEDIUM
Missing Authorization vulnerability in weForms.This issue affects weForms: from n/a through 1.6.18.
CVE-2023-51523			2024-11-21	N/A	4.3 MEDIUM
Missing Authorization vulnerability in WriterSystem WooCommerce Easy Duplicate Product.This issue affects WooCommerce Easy Duplicate Product: from n/a through 0.3.0.7.
CVE-2023-51519	1 Soliloquywp	1 Slider	2024-11-21	N/A	4.3 MEDIUM
Missing Authorization vulnerability in Soliloquy Team Slider by Soliloquy.This issue affects Slider by Soliloquy: from n/a through 2.7.2.
CVE-2023-51516	1 Businessdirectoryplugin	1 Business Directory	2024-11-21	N/A	5.4 MEDIUM
Missing Authorization vulnerability in Business Directory Team Business Directory Plugin.This issue affects Business Directory Plugin: from n/a through 6.3.9.
CVE-2023-51515			2024-11-21	N/A	8.8 HIGH
Missing Authorization vulnerability in Undsgn Uncode Core allows Privilege Escalation.This issue affects Uncode Core: from n/a through 2.8.8.
CVE-2023-51507	1 Expresstech	1 Quiz And Survey Master	2024-11-21	N/A	5.3 MEDIUM
Missing Authorization vulnerability in ExpressTech Quiz And Survey Master.This issue affects Quiz And Survey Master: from n/a through 8.1.16.
CVE-2023-51500			2024-11-21	N/A	7.7 HIGH
Missing Authorization vulnerability in Undsgn Uncode Core.This issue affects Uncode Core: from n/a through 2.8.8.
CVE-2023-51499			2024-11-21	N/A	4.3 MEDIUM
Missing Authorization vulnerability in WooCommerce WooCommerce Shipping Per Product.This issue affects WooCommerce Shipping Per Product: from n/a through 2.5.4.
CVE-2023-51498			2024-11-21	N/A	5.3 MEDIUM
Missing Authorization vulnerability in Woo WooCommerce Canada Post Shipping.This issue affects WooCommerce Canada Post Shipping: from n/a through 2.8.3.
CVE-2023-51497	1 Woocommerce	1 Shipping Multiple Addresses	2024-11-21	N/A	5.4 MEDIUM
Missing Authorization vulnerability in Woo WooCommerce Ship to Multiple Addresses.This issue affects WooCommerce Ship to Multiple Addresses: from n/a through 3.8.9.
CVE-2023-51496	1 Woocommerce	1 Returns And Warranty Requests	2024-11-21	N/A	5.3 MEDIUM
Missing Authorization vulnerability in Woo WooCommerce Warranty Requests.This issue affects WooCommerce Warranty Requests: from n/a through 2.2.7.
CVE-2023-51495	1 Woocommerce	1 Returns And Warranty Requests	2024-11-21	N/A	6.5 MEDIUM
Missing Authorization vulnerability in Woo WooCommerce Warranty Requests.This issue affects WooCommerce Warranty Requests: from n/a through 2.2.7.
CVE-2023-51494	1 Woocommerce	1 Product Vendors	2024-11-21	N/A	5.3 MEDIUM
Missing Authorization vulnerability in Woo WooCommerce Product Vendors.This issue affects WooCommerce Product Vendors: from n/a through 2.2.1.
CVE-2023-51418			2024-11-21	N/A	7.7 HIGH
Missing Authorization vulnerability in Joris van Montfort JVM rich text icons.This issue affects JVM rich text icons: from n/a through 1.2.6.
CVE-2023-51413			2024-11-21	N/A	5.3 MEDIUM
Missing Authorization vulnerability in Piotnet Forms.This issue affects Piotnet Forms: from n/a through 1.0.29.
CVE-2023-51377	1 Wpeverest	1 Everest Forms	2024-11-21	N/A	5.3 MEDIUM
Missing Authorization vulnerability in WPEverest Everest Forms.This issue affects Everest Forms: from n/a through 2.0.3.
CVE-2023-51376	1 Brainstormforce	1 Surefeedback	2024-11-21	N/A	4.3 MEDIUM
Missing Authorization vulnerability in Brainstorm Force ProjectHuddle Client Site.This issue affects ProjectHuddle Client Site: from n/a through 1.0.34.
CVE-2023-51375	1 Wpdeveloper	1 Embedpress	2024-11-21	N/A	4.3 MEDIUM
Missing Authorization vulnerability in WPDeveloper EmbedPress.This issue affects EmbedPress: from n/a through 3.8.3.
CVE-2023-50779	1 Jenkins	1 Paaslane Estimate	2024-11-21	N/A	4.3 MEDIUM
Missing permission checks in Jenkins PaaSLane Estimate Plugin 1.0.4 and earlier allow attackers with Overall/Read permission to connect to an attacker-specified URL using an attacker-specified token.
CVE-2023-50769	1 Jenkins	1 Nexus Platform	2024-11-21	N/A	4.3 MEDIUM
Missing permission checks in Jenkins Nexus Platform Plugin 3.18.0-03 and earlier allow attackers with Overall/Read permission to connect to an attacker-specified HTTP server using attacker-specified credentials IDs obtained through another method, capturing credentials stored in Jenkins.
CVE-2023-50767	1 Jenkins	1 Nexus Platform	2024-11-21	N/A	5.4 MEDIUM
Missing permission checks in Jenkins Nexus Platform Plugin 3.18.0-03 and earlier allow attackers with Overall/Read permission to send an HTTP request to an attacker-specified URL and parse the response as XML.
CVE-2023-50765	1 Jenkins	1 Scriptler	2024-11-21	N/A	4.3 MEDIUM
A missing permission check in Jenkins Scriptler Plugin 342.v6a_89fd40f466 and earlier allows attackers with Overall/Read permission to read the contents of a Groovy script by knowing its ID.

Vulnerabilities (CVE)