CVE-2026-40722

Missing Authorization vulnerability in Yoast BV Yoast SEO Premium allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Yoast SEO Premium: from n/a through 26.6...

CVE-2025-68073

Missing Authorization vulnerability in Ninja Team GDPR CCPA Compliance Support ninja-gdpr-compliance allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GDPR CCPA Compliance Support: from n/a through = 2.7.4...

CVE-2025-4046

A missing authorization vulnerability in Lexmark Cloud Services badge management allows attacker to reassign badges within their organization...

PT-2025-33725 · Lexmark · Lexmark Cloud Services

Name of the Vulnerable Software and Affected Versions: Lexmark Cloud Services affected versions not specified Description: A missing authorization vulnerability in Lexmark Cloud Services badge management allows an attacker to reassign badges within their organization. Recommendations: At the...

PT-2025-33382 · Elementor +1 · Elementor +1

Name of the Vulnerable Software and Affected Versions: hashthemes Easy Elementor Addons versions through 2.2.7 Description: The software contains a missing authorization flaw that allows exploiting incorrectly configured access control security levels. Recommendations: Update hashthemes Easy...

PT-2025-33203 · Syedamirhussain91 · Db Backup

Name of the Vulnerable Software and Affected Versions: syedamirhussain91 DB Backup versions through 6.0 Description: A missing authorization flaw in syedamirhussain91 DB Backup allows exploitation due to incorrectly configured access control security levels. Recommendations: Update to a version...

PT-2025-33247 · Hastech · Hastech Ht Mega

Name of the Vulnerable Software and Affected Versions: HasTech HT Mega versions through 2.9.0 Description: A missing authorization flaw exists in HasTech HT Mega, allowing exploitation of incorrectly configured access control security levels. Recommendations: Update HasTech HT Mega to a version...

PT-2025-33213 · WordPress · Project Cost Calculator

Name of the Vulnerable Software and Affected Versions: Ronik@UnlimitedWP Project Cost Calculator versions through 1.0.0 Description: A missing authorization flaw exists in Ronik@UnlimitedWP Project Cost Calculator due to incorrectly configured access control security levels. Recommendations: At t...

PT-2025-30713

Name of the Vulnerable Software and Affected Versions ATEN eco DC affected versions not specified Description The ATEN eco DC software contains a missing authorization flaw that can lead to privilege escalation. This issue allows unauthorized access and potential control over the system...

PT-2025-29802 · WordPress · Profiler

Name of the Vulnerable Software and Affected Versions: Profiler - What Slowing Down Your WP versions n/a through 1.0.0 Description: The software contains a missing authorization flaw due to incorrectly configured access control security levels. Recommendations: Versions prior to 1.0.0 are affecte...

CVE-2023-23896

Missing Authorization vulnerability in MyThemeShop URL Shortener by MyThemeShop.This issue affects URL Shortener by MyThemeShop: from n/a through 1.0.17...

CVE-2025-48272

Missing Authorization vulnerability in wpjobportal WP Job Portal wp-job-portal allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WP Job Portal: from n/a through = 2.3.2...

CVE-2025-32178

Missing Authorization vulnerability in 6Storage 6Storage Rentals 6storage-rentals allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects 6Storage Rentals: from n/a through = 2.22.0...

PT-2025-14192 · Pickplugins · Pickplugins Question Answer

Name of the Vulnerable Software and Affected Versions: PickPlugins Question Answer versions 1.2.70 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows accessing functionality not properly constrained by ACLs. Recommendations: For versions 1.2.70 an...

PT-2025-1505 · Unknown · Freesoul Deactivate Plugins

Name of the Vulnerable Software and Affected Versions: Freesoul Deactivate Plugins – Plugin manager and cleanup versions 2.1.3 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows exploiting incorrectly configured access control security levels. Thi...

CBL Mariner 2.0 Security Update: libvirt (CVE-2020-10701)

The version of libvirt installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-10701 advisory. - A missing authorization flaw was found in the libvirt API responsible for changing the QEMU agent response...

CVE-2023-23611 xblock-lti-consumer contain Missing Authorization in Grade Pass Back Implementation

LTI Consumer XBlock implements the consumer side of the LTI specification enabling integration of third-party LTI provider tools. Versions 7.0.0 and above, prior to 7.2.2, are vulnerable to Missing Authorization. Any LTI tool that is integrated with on the Open edX platform can post a grade back...