Fallos del tipo CWE-862
6899 resultadosCVE-2024-22296MEDIUMWordPress 12 Step Meeting List plugin <= 3.14.28 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-57939MEDIUMWordPress Image Hover Effects – Elementor Addon Plugin <= 1.4.4 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2024-10363MEDIUMImproper Access Control in danny-avila/LibreChatEPSS 0.3%CVE-2024-13776HIGHZoomSounds - WordPress Wave Audio Player with Playlist <= 6.91 - Missing Authorization to Authenticated (Subscriber+) Limited Options Update and Settings ManipulationEPSS 0.3%CVE-2025-10753MEDIUMOAuth Single Sign On – SSO (OAuth Client) <= 6.26.14 - Missing AuthorizationEPSS 0.3%CVE-2025-20301MEDIUMCisco Secure Firewall Management Center Software Authorization Bypass VulnerabilityEPSS 0.3%CVE-2024-55991MEDIUMWordPress CRM Plugin – WP-CRM System plugin <= 3.2.9.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-4450MEDIUMAliExpress Dropshipping with AliNext Lite <= 3.3.6 - Missing Authorization via Several FunctionsEPSS 0.3%CVE-2024-9891MEDIUMMultiline files upload for contact form 7 <= 2.8.1 - Missing Authorization to Authenticated (Subscriber+) Plugin DeactivationEPSS 0.3%CVE-2025-57907MEDIUMWordPress Heureka Plugin <= 1.1.0 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-22737MEDIUMWordPress WpTravelly Plugin <= 1.8.5 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-43939MEDIUMWordPress Z Y N I T H plugin <= 7.4.9 - Unauthenticated Arbitrary Option Deletion vulnerabilityEPSS 0.3%CVE-2024-5677MEDIUMFeatured Image Generator <= 1.3.1 - Missing Authorization to Authenticated (Subscriber+) Images UploadEPSS 0.3%CVE-2024-11844MEDIUMIdeaPush <= 8.71 - Missing Authorization to Board Term DeletionEPSS 0.3%CVE-2025-2815HIGHAdministrator Z <= 2025.03.24 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options UpdateEPSS 0.3%CVE-2024-4958HIGHUser Registration – Custom Registration Form, Login Form, and User Profile WordPress Plugin <= 3.2.0.1 - Missing Authorization to Privilege EscalationEPSS 0.3%CVE-2024-12331MEDIUMFile Manager Pro – Filester <= 1.8.6 - Missing Authorization to Authenticated (Subscriber+) Filebird Plugin InstallationEPSS 0.3%CVE-2024-10326MEDIUMRomethemeKit For Elementor <= 1.5.3 - Missing Authorization in save_options and reset_widgetsEPSS 0.3%CVE-2026-7552MEDIUMGeo Mashup <= 1.13.19 - Missing Authorization to Unauthenticated Plugin Settings Disclosure via 'geo_mashup_content' ParameterEPSS 0.3%CVE-2023-51679MEDIUMWordPress BulkGate SMS Plugin for WooCommerce plugin <= 3.0.2 - Broken Access Control vulnerabilityEPSS 0.3%