Fallos del tipo CWE-862

6889 resultados
CVE-2023-7067MEDIUMShopLentor <= 2.8.1 - Improper Authorization via woolentor_template_storeEPSS 0.3%CVE-2024-12266MEDIUMELEX WooCommerce Dynamic Pricing and Discounts <= 2.1.7 - Missing AuthorizationEPSS 0.3%CVE-2024-32798HIGHWordPress WP Travel Engine plugin <= 5.8.0 - Price Manipulation vulnerabilityEPSS 0.3%CVE-2024-1649MEDIUMCategorify <= 1.0.7.4 - Missing Authorization in categorifyAjaxDeleteCategoryEPSS 0.3%CVE-2024-12263MEDIUMChild Theme Creator by Orbisius <= 1.5.5 - Missing Authorization to Authenticated (Subscriber+) Cloud Snippet Update/DeleteEPSS 0.3%CVE-2025-49181HIGHConfigurations endpoint does not require authorizationEPSS 0.3%CVE-2024-47268MEDIUMMissing authorization vulnerability in AddOns functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remoteEPSS 0.3%CVE-2024-33585MEDIUMWordPress Payment Gateway Based Fees and Discounts for WooCommerce plugin <= 2.12.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-1653MEDIUMCategorify <= 1.0.7.4 - Missing Authorization in categorifyAjaxUpdateFolderPositionEPSS 0.3%CVE-2025-31863MEDIUMWordPress Agency Toolkit plugin <= 1.0.24 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-33593MEDIUMWordPress Smart Forms plugin <= 2.6.91 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-12104MEDIUMVisual Website Collaboration, Feedback & Project Management – Atarim <= 4.0.9 - Missing Authorization to Authenticated (Subscriber+) Project Page/File DeletionEPSS 0.3%CVE-2024-1652MEDIUMCategorify <= 1.0.7.4 - Missing Authorization in categorifyAjaxClearCategoryEPSS 0.3%CVE-2024-44052MEDIUMWordPress HelloAsso plugin <= 1.1.10 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-1650MEDIUMCategorify <= 1.0.7.4 - Missing Authorization in categorifyAjaxRenameCategoryEPSS 0.3%CVE-2025-3912MEDIUMWS Form LITE – Drag & Drop Contact Form Builder for WordPress <= 1.10.35 - Missing Authorization to Unauthenticated Sensitive Information ExposureEPSS 0.3%CVE-2024-1388MEDIUMYuki <= 1.3.13 - Missing Authorization to Authenticated (Subscriber+) Theme Setting ResetEPSS 0.3%CVE-2025-8807MEDIUMxujeff tianti 天梯 save authorizationEPSS 0.3%CVE-2023-46605MEDIUMWordPress Convertful – Your Ultimate On-Site Conversion Tool plugin <= 2.5 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-34753MEDIUMWordPress Radio Player plugin <= 2.0.73 - Broken Access Control vulnerabilityEPSS 0.3%