Drupal Authenticator Login module < 2.1.4 - Unauthenticated Broken Access Control vulnerability

Unauthenticated Broken Access Control vulnerability discovered by Pierre Rudloff prudloff in WordPress Module Authenticator Login versions 2.1.4...

CVE-2025-26961 WordPress Fresh Framework plugin <= 1.70.0 - Unauthenticated Broken Access Control vulnerability

Missing Authorization vulnerability in FRESHFACE Fresh Framework fresh-framework allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Fresh Framework: from n/a through = 1.70.0...

Drupal Authenticator Login module < 2.0.6 - Unauthenticated Broken Access Control vulnerability

Unauthenticated Broken Access Control vulnerability discovered by Ahmed Raza in WordPress Module Authenticator Login versions 2.0.6...

WordPress SEOPress plugin <= 8.1.1 - Unauthenticated Broken Access Control vulnerability

Unauthenticated Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin SEOPress versions = 8.1.1...

Joomla core 4.0.0-4.4.6,5.0.0-5.1.2 - Unauthenticated Improper ACL for backend profile view vulnerability

Unauthenticated Improper ACL for backend profile view vulnerability discovered by ? in WordPress Core Joomla versions 4.0.0-4.4.6,5.0.0-5.1.2...

CVE-2023-35049 WordPress WooCommerce Stripe Payment Gateway plugin <= 7.4.0 - Unauthenticated Broken Access Control vulnerability

Missing Authorization vulnerability in WooCommerce WooCommerce Stripe Payment Gateway.This issue affects WooCommerce Stripe Payment Gateway: from n/a through 7.4.0...

WordPress XStore theme <= 9.3.8 - Unauthenticated Broken Access Control vulnerability

Unauthenticated Broken Access Control vulnerability discovered by Rafie Muhammad Patchstack in WordPress Theme XStore versions = 9.3.8...

CVE-2023-50344

HCL DRYiCE MyXalytics is impacted by improper access control Unauthenticated File Download vulnerability. An unauthenticated user can download certain files...