Fallos del tipo CWE-862
7000 resultadosCVE-2022-3322MEDIUMLock WARP switch bypass on WARP mobile client using iOS quick actionEPSS 0.2%CVE-2025-49221LOWUnauthenticated Access to Channel Subscription in Mattermost Confluence PluginEPSS 0.2%CVE-2023-40679MEDIUMWordPress Master Elementor Addons plugin <= 2.0.5.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-41498LOWKimai: Team API Missing Object-Level AuthorizationEPSS 0.2%CVE-2026-4100HIGHPaid Memberships Pro <= 3.6.5 - Missing Authorization to Authenticated (Subscriber+) Stripe Webhook Deletion and Payment Processing DisruptionEPSS 0.2%CVE-2025-58004MEDIUMWordPress DriCub Theme <= 2.9 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-22673MEDIUMWordPress EAN Barcode Generator <= 5.3.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-68882HIGHWordPress Scalenut plugin <= 1.1.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-64222HIGHWordPress WooCommerce Recover Abandoned Cart plugin <= 24.6.0 - Arbitrary Content Deletion vulnerabilityEPSS 0.2%CVE-2025-14798MEDIUMLearnPress – WordPress LMS Plugin <= 4.3.2.4 - Missing Authorization to Unauthenticated Sensitive User Information Disclosure via REST APIEPSS 0.2%CVE-2026-24590MEDIUMWordPress Paid Videochat Turnkey Site plugin <= 7.3.23 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-23517MEDIUMFleet has an Access Control vulnerability in debug/pprof endpointsEPSS 0.2%CVE-2026-39503HIGHWordPress Easy Digital Downloads plugin <= 3.6.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25876MEDIUMPlaciPy is Missing Authorization on Assessment Results EndpointEPSS 0.2%CVE-2025-60086HIGHWordPress WP Voting Contest plugin <= 5.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-23944MEDIUMApache ZooKeeper: Information disclosure in persistent watcher handlingEPSS 0.2%CVE-2026-27386HIGHWordPress DesignThemes Directory Addon plugin <= 1.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-42377MEDIUMMultiple Missing Authorization Check vulnerabilities in SAP Shared Service FrameworkEPSS 0.2%CVE-2025-11632MEDIUMCall Now Button <= 1.5.4 - Authenticated (Subscriber+) Missing Authorization to Multiple FunctionsEPSS 0.2%CVE-2026-34898HIGHWordPress Event Tickets Manager for WooCommerce plugin <= 1.5.3 - Broken Access Control vulnerabilityEPSS 0.2%