Fallos del tipo CWE-862
6917 resultadosCVE-2023-46203MEDIUMWordPress Just Custom Fields plugin <= 3.3.2 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-57353MEDIUMWordPress Link Whisper Premium plugin <= 2.9.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-47529MEDIUMWordPress Experto CTA Widget – Call To Action, Sticky CTA, Floating Button Plugin <= 1.1.1 - Settings Change VulnerabilityEPSS 0.3%CVE-2025-69137MEDIUMWordPress Genemy theme <= 1.6.6 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-12384HIGHDocument Embedder – Embed PDFs, Word, Excel, and Other Files <= 2.0.0 - Missing Authorization to Unauthenticated Document ManipulationEPSS 0.3%CVE-2025-57921MEDIUMWordPress Frontend File Manager plugin <= 23.3 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-3557MEDIUMScriptAndTools eCommerce-website-in-PHP cross-site request forgeryEPSS 0.3%CVE-2026-6798MEDIUM2Download Connector for 2DL Hosted Checkout <= 0.1.5 - Missing Authorization to Unauthenticated Sensitive Customer Subscription Data Exposure via 'ToDownload_email' ParameterEPSS 0.3%CVE-2024-55995MEDIUMWordPress Torod plugin <= 1.7 - Settings Change vulnerabilityEPSS 0.3%CVE-2025-50029MEDIUMWordPress AI Tools <= 4.0.7 - Arbitrary Content Deletion VulnerabilityEPSS 0.3%CVE-2026-57355MEDIUMWordPress Classified Listing plugin <= 5.4.2 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-32258MEDIUMWordPress Simple Website Logo plugin <= 1.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-49916HIGHWordPress MultiVendorX plugin <= 4.2.23 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-35741MEDIUMWordPress Awesome Support plugin <= 6.1.7 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-45307HIGHSudoBot missing authorization check in `-config` commandEPSS 0.3%CVE-2025-3561MEDIUMghostxbh uzy-ssm-mall cross-site request forgeryEPSS 0.3%CVE-2025-3766MEDIUMLogin Lockdown & Protection <= 2.11 - Missing Authorization to Authenticated (Subscriber+) Arbitrary IP WhitelistingEPSS 0.3%CVE-2025-4430HIGHUnauthorized file manipulation in EZD RPEPSS 0.3%CVE-2025-30926MEDIUMWordPress King Addons for Elementor plugin <= 24.12.58 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2024-6175MEDIUMBooking Ultra Pro <= 1.1.13 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings UpdatesEPSS 0.3%