Fallos del tipo CWE-862

6960 resultados
CVE-2025-5132MEDIUMTmall Demo logout cross-site request forgeryEPSS 0.3%CVE-2026-58377HIGHJeecgBoot 3.9.2 - Missing Authorization on OpenAPI Credential Management Endpoints Exposes Access/Secret KeysEPSS 0.3%CVE-2025-6105MEDIUMjflyfox jfinal_cms HOME.java cross-site request forgeryEPSS 0.3%CVE-2025-62977MEDIUMWordPress 百度站长SEO合集(支持百度/神马/Bing/头条推送) plugin <= 2.1.4 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-58668MEDIUMWordPress WPLMS theme <= 4.970 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-31618MEDIUMWordPress Connector to CiviCRM with CiviMcRestFace plugin <= 1.0.10 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-26888MEDIUMWordPress WooCommerce Multilingual & Multicurrency plugin <= 5.3.8 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-13484LOWMLflow Experiment-scoped Label Schema CRUD API authorizationEPSS 0.3%CVE-2025-58679MEDIUMWordPress AppMySite plugin <= 3.15.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-5732MEDIUMcode-projects Traffic Offense Reporting System cross-site request forgeryEPSS 0.3%CVE-2024-24704MEDIUMWordPress Load More Anything plugin <= 3.3.3 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-58247MEDIUMWordPress TI WooCommerce Wishlist plugin <= 2.10.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-58681MEDIUMWordPress Easy Quotes Plugin <= 1.2.4 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-58938HIGHWordPress IDonatePro plugin <= 2.1.9 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-9630MEDIUMWPS Telegram Chat <= 4.6.0 - Missing Authorization to Information ExposureEPSS 0.3%CVE-2024-13243MEDIUMEntity Delete Log - Moderately critical - Access bypass - SA-CONTRIB-2024-007EPSS 0.3%CVE-2025-14782MEDIUMForminator Forms – Contact Form, Payment Form & Custom Form Builder <= 1.49.1 - Missing Authorization to Authenticated (Forminator User+) CSV ExportEPSS 0.3%CVE-2026-56280HIGHCap-go - Privilege Inversion in Build Log Stream via SSE DisconnectEPSS 0.3%CVE-2024-41734MEDIUMMissing Authorization check in SAP NetWeaver Application Server ABAP and ABAP PlatformEPSS 0.3%CVE-2021-21264MEDIUMBypass of fix for CVE-2020-26231, Twig sandbox escapeEPSS 0.3%