Fallos del tipo CWE-862

6960 resultados
CVE-2025-54741MEDIUMWordPress Super Blank Plugin <= 1.2.0 - Arbitrary Content Deletion VulnerabilityEPSS 0.3%CVE-2023-47807MEDIUMWordPress 10WebAnalytics plugin <= 1.2.12 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-42473MEDIUMMissing Authorization Check In S/4HANA (Manage Withholding Tax Items)EPSS 0.3%CVE-2026-25335MEDIUMWordPress Secure Copy Content Protection and Content Locking plugin <= 5.0.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-4301MEDIUMRate Star Review Vote <= 1.6.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Modification via 'rating_id' ParameterEPSS 0.3%CVE-2026-34892MEDIUMWordPress Rank Math SEO plugin <= 1.0.271 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-54470MEDIUMA logic issue was addressed with improved checks. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, iOS 18.1 and iPadOS 18.1. An attackerEPSS 0.3%CVE-2025-43805MEDIUMLiferay Portal 7.3.0 through 7.4.3.111, and Liferay DXP 2023.Q4.0, 2023.Q3.1 through 2023.Q3.4, 7.4 GA through update 92, and 7.3 GA throughEPSS 0.3%CVE-2026-42659MEDIUMWordPress Advanced Form Integration plugin <= 1.126.12 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-34184HIGHMissing Authorization in Hydrosystem Control SystemEPSS 0.3%CVE-2025-41114HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%CVE-2025-41113HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%CVE-2026-20155HIGHCisco Evolved Programmable Network Manager Improper Authorization VulnerabilityEPSS 0.3%CVE-2025-58613MEDIUMWordPress Posts Table with Search & Sort Plugin <= 1.4.10 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2026-39569MEDIUMWordPress 12 Step Meeting List plugin <= 3.19.9 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-40673MEDIUMMissing Authorization in DinoRANKEPSS 0.3%CVE-2026-6393MEDIUMBetterDocs <= 4.3.11 - Missing Authorization to Authenticated (Subscriber+) Unauthorized AI API UsageEPSS 0.3%CVE-2025-1557MEDIUMOFCMS cross-site request forgeryEPSS 0.3%CVE-2025-8223MEDIUMjerryshensjf JPACookieShop 蛋糕商城JPA版 AdminTypeCustController.java cross-site request forgeryEPSS 0.3%CVE-2024-54269MEDIUMWordPress Notibar plugin <= 2.1.4 - Broken Access Control vulnerabilityEPSS 0.3%