EUVD-2024-40188

Malicious code in bioql PyPI...

CVE-2025-0885

Incorrect Authorization vulnerability in OpenText™ GroupWise allows Exploiting Incorrectly Configured Access Control Security Levels. The vulnerability could allow unauthorized access to calendar items marked private. This issue affects GroupWise versions 7 through 17.5, 23.4, 24.1, 24.2, 24.3,...

PT-2025-27885 · Unknown · Amazewp Fluxtore

Name of the Vulnerable Software and Affected Versions: amazewp fluXtore versions 1.6.0 and earlier Description: The issue is related to a Missing Authorization vulnerability, which allows the exploitation of incorrectly configured access control security levels. Recommendations: For amazewp...

CVE-2025-53293

Missing Authorization vulnerability in Morten Dalgaard Johansen Dashboard Widget Sidebar dashboard-widget-sidebar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Dashboard Widget Sidebar: from n/a through = 1.2.3...

CVE-2025-49981

Missing Authorization vulnerability in mahabub81 User Roles and Capabilities user-roles-and-capabilities allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects User Roles and Capabilities: from n/a through = 1.2.6...

CVE-2025-30945

Missing Authorization vulnerability in taskbuilder Taskbuilder taskbuilder allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Taskbuilder: from n/a through = 4.0.7...

CVE-2025-49241

CVE-2025-49241: Missing Authorization in the bobbingwide oik plugin (WordPress) allows bypass of access controls on versions up to 4.15.1. The issue is confirmed by Wordfence and Red Hat entries; remediation is to upgrade to oik 4.15.1 or later as documented by the sources.

CVE-2025-24679

Missing Authorization vulnerability in webraketen Internal Links Manager seo-automated-link-building allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Internal Links Manager: from n/a through = 2.5.2...

CVE-2023-47183

Missing Authorization vulnerability in StellarWP GiveWP give allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects GiveWP: from n/a through = 2.33.1...

CVE-2023-38477

CVE-2023-38477 affects the WordPress plugin WP-Qrcode MeCard/vCard generator (wp-qrcode-me-v-card)