Fallos del tipo CWE-862

6889 resultados
CVE-2025-1666MEDIUMCookie banner plugin for WordPress – Cookiebot CMP by Usercentrics <= 4.4.1 - Missing Authorization to Authenticated (Subscriber+) Survey SubmissionEPSS 0.3%CVE-2026-35033CRITICALJellyfin: Potential SSRF + Arbitrary file read via stream argument injectionEPSS 0.3%CVE-2025-1813MEDIUMzj1983 zz cross-site request forgeryEPSS 0.3%CVE-2026-30970HIGHSession authentication bypass in Coral Server session creation endpointEPSS 0.3%CVE-2024-54323MEDIUMWordPress New User Approve plugin <= 2.6.2 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-49321MEDIUMWordPress Simple Custom Post Order plugin <= 2.5.7 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-8681MEDIUMEssential Chat Support <= 1.0.1 - Missing Authorization to Unauthenticated Settings Reset via 'ecs_reset_settings' ParameterEPSS 0.3%CVE-2023-41296Vulnerability of missing authorization in the kernel module. Successful exploitation of this vulnerability may affect integrity and confidenEPSS 0.3%CVE-2024-24741MEDIUMMissing Authorization check in SAP Master Data Governance MaterialEPSS 0.3%CVE-2024-13449MEDIUMBoom Fest <= 2.2.1 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings UpdateEPSS 0.3%CVE-2023-29237MEDIUMWordPress Remove Duplicate Posts plugin <= 1.3.5 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-9686MEDIUMOrder Notification for Telegram <= 1.0.1 - Missing Authorization to Unauthenticated Send Telegram Test MessageEPSS 0.3%CVE-2025-68039MEDIUMWordPress WP BackItUp plugin <= 2.1.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-24719MEDIUMWordPress Kikote plugin <= 1.8.9 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-48039MEDIUMWordPress CubeWP Framework plugin <= 1.1.15 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-13203MEDIUMkurniaramadhan E-Commerce-PHP cross-site request forgeryEPSS 0.3%CVE-2025-28965HIGHWordPress URL Shortener <= 3.0.7 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-39413MEDIUMWordPress Simple Sitemap – Create a Responsive HTML Sitemap plugin <= 3.6.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-30216MEDIUMMissing Authorization check in SAP S/4 HANA (Cash Management)EPSS 0.3%CVE-2026-35448LOWWWBN AVideo Provides Unauthenticated Access to Payment Order Data via BlockonomicsYPT check.phpEPSS 0.3%