Fallos del tipo CWE-862
6960 resultadosCVE-2025-60120MEDIUMWordPress WP Directory Kit plugin <= 1.4.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-41345HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%CVE-2024-50052MEDIUMArbitrary post deletion via Playbooks /ignore-thread endpointEPSS 0.3%CVE-2025-1557MEDIUMOFCMS cross-site request forgeryEPSS 0.3%CVE-2025-3915MEDIUMAeropage Sync for Airtable <= 3.2.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post DeletionEPSS 0.3%CVE-2025-49860MEDIUMWordPress Majestic Support plugin <= 1.1.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-39569MEDIUMWordPress 12 Step Meeting List plugin <= 3.19.9 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-41342HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%CVE-2026-8996MEDIUMBackup and Staging by WP Time Capsule <= 1.22.26 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure via download_recent_decrypted_file_wptc FunctionEPSS 0.3%CVE-2025-41335HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%CVE-2026-20155HIGHCisco Evolved Programmable Network Manager Improper Authorization VulnerabilityEPSS 0.3%CVE-2025-41344HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%CVE-2025-58613MEDIUMWordPress Posts Table with Search & Sort Plugin <= 1.4.10 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-40673MEDIUMMissing Authorization in DinoRANKEPSS 0.3%CVE-2026-34184HIGHMissing Authorization in Hydrosystem Control SystemEPSS 0.3%CVE-2025-41339HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%CVE-2025-8492MEDIUMSalon Booking System <= 10.22 - Missing Authorization to Unauthenticated AJAX Actions ExecutionEPSS 0.3%CVE-2026-45399HIGHOpen WebUI: Low-privilege authenticated users can enumerate and stop global background tasks, causing system-wide chat disruptionEPSS 0.3%CVE-2025-41111HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%CVE-2025-8223MEDIUMjerryshensjf JPACookieShop 蛋糕商城JPA版 AdminTypeCustController.java cross-site request forgeryEPSS 0.3%