Fallos del tipo CWE-862
6896 resultadosCVE-2024-33925MEDIUMWordPress Embed Google Fonts plugin <= 3.1.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-32144MEDIUMWordPress Welcart e-Commerce plugin <= 2.9.14 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-44472MEDIUMWordPress Unyson plugin <= 2.7.28 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-32520MEDIUMWordPress WPC Grouped Product for WooCommerce plugin <= 4.4.2 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-32519MEDIUMWordPress GG Woo Feed for WooCommerce plugin <= 1.2.6 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-51692MEDIUMWordPress Customer Reviews for WooCommerce Plugin <= 5.38.1 is vulnerable to Broken Access ControlEPSS 0.3%CVE-2024-32148MEDIUMWordPress Pardot plugin <= 2.1.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-50454MEDIUMWordPress SEOPress plugin <= 8.1.1 - Unauthenticated Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-37481MEDIUMWordPress The Post Grid plugin <= 7.7.4 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-24581MEDIUMWordPress Instantio plugin <= 3.3.7 - Settings Change vulnerabilityEPSS 0.3%CVE-2024-49683MEDIUMWordPress Schema & Structured Data for WP & AMP plugin <= 1.3.5 - Sensitive Data Exposure vulnerabilityEPSS 0.3%CVE-2024-31274MEDIUMWordPress EmbedPress plugin <= 3.9.11 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-3999MEDIUMWaiting: One-click countdowns <= 0.6.2 - Missing AuthorizationEPSS 0.3%CVE-2024-37929MEDIUMWordPress User Activity Log Pro plugin <= 2.3.4 - Subscriber+ Multiple Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-35729MEDIUMWordPress Tickera plugin <= 3.5.2.6 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2022-2276—WP Edit Menu < 1.5.0 - Unauthenticated Arbitrary Post DeletionEPSS 0.3%CVE-2026-44482CRITICALsoundcloud-rpc: Remote Code Execution via XSS in Track TitleEPSS 0.3%CVE-2026-35182HIGHMissing Authorization Privilege EscalationEPSS 0.3%CVE-2024-56270MEDIUMWordPress WP SecureSubmit plugin <= 1.5.20 - Sensitive Data Exposure vulnerabilityEPSS 0.3%CVE-2024-31246MEDIUMWordPress PostX plugin <= 3.2.3 - Author+ Post/Page Duplication vulnerabilityEPSS 0.3%