Fallos del tipo CWE-862

7000 resultados
CVE-2025-57975MEDIUMWordPress Team Plugin <= 5.0.6 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-58968MEDIUMWordPress MaxiBlocks Plugin <= 2.1.3 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-50084CRITICALAqara API cross-account accessEPSS 0.2%CVE-2026-33918HIGHOpenEMR Missing Authorization on Claim File Download EndpointEPSS 0.2%CVE-2026-39432HIGHWordPress Timetics plugin <= 1.0.53 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-32656HIGHAnt Media Server vulnerable to local privilege escalationEPSS 0.2%CVE-2025-57997MEDIUMWordPress Trustpilot Reviews Plugin <= 2.5.925 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-1537MEDIUMLatePoint – Calendar Booking Plugin for Appointments and Events <= 5.2.6 - Missing Authorization to Booking Details ExposureEPSS 0.2%CVE-2026-2208MEDIUMWeKan Rules rules.js RulesBleed authorizationEPSS 0.2%CVE-2026-40726HIGHWordPress User Registration Stripe plugin <= 1.3.14 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-58165HIGHOpenZiti - Privilege Escalation to Admin via Unauthorized Enrollment CreationEPSS 0.2%CVE-2026-27468MEDIUMMastodon may allow unconfirmed FASP to make subscriptionsEPSS 0.2%CVE-2025-12655MEDIUMHippoo Mobile App for WooCommerce <= 1.7.1 - Missing Authorization to Unauthenticated Limited File WriteEPSS 0.2%CVE-2025-27294MEDIUMWordPress WP-Asambleas plugin <= 2.85.0 - Arbitrary Shortcode Execution vulnerabilityEPSS 0.2%CVE-2026-49741HIGHTYPO3 CMS - Privilege Escalation & SQL Injection in Form FrameworkEPSS 0.2%CVE-2026-24610MEDIUMWordPress MetForm Pro plugin <= 3.9.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-5803MEDIUMWordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.8.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25395MEDIUMWordPress Business Roy theme <= 1.1.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-43228MEDIUMWordPress SecuPress Free plugin <= 2.2.5.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-24108MEDIUMAn access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.3. An app may be able to access EPSS 0.2%