Fallos del tipo CWE-862
7009 resultadosCVE-2023-28619MEDIUMWordPress Resoto theme <= 1.0.8 - Broken Access Control to Arbitrary Plugin ActivationEPSS 0.2%CVE-2026-8689MEDIUMVisualizer: Tables and Charts Manager for WordPress <= 3.11.14 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Chart Creation and Modification via renderChartPages() and uploadData() FunctionsEPSS 0.2%CVE-2026-40782MEDIUMWordPress WPAdverts plugin <= 2.3.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-27435MEDIUMWordPress Woffice theme < 5.4.33 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-27368MEDIUMWordPress Coming Soon Page, Under Construction & Maintenance Mode by SeedProd plugin <= 6.19.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-31915MEDIUMWordPress Flatsome theme <= 3.19.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-67913MEDIUMWordPress Aruba HiSpeed Cache plugin < 3.0.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-57688HIGHWordPress POS Entegratör plugin <= 3.7.103 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-5410MEDIUMMist Community Edition middleware.py session_start_response cross-site request forgeryEPSS 0.2%CVE-2024-13687MEDIUMTeam Builder – Meet the Team <= 1.3 - Missing Authorization to Authenticated (Subscriber+) Settings UpdateEPSS 0.2%CVE-2026-27328MEDIUMWordPress EduBlink theme <= 2.0.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-67993MEDIUMWordPress Atarim plugin <= 4.2.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-42651MEDIUMWordPress Classified Listing plugin <= 5.3.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-68507MEDIUMWordPress Icegram plugin <= 3.1.35 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-49949MEDIUMWordPress Templazee plugin <= 1.0.2 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-49981MEDIUMWordPress User Roles and Capabilities plugin <= 1.2.6 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-69095MEDIUMWordPress Reservation Plugin plugin <= 1.7 - Settings Change vulnerabilityEPSS 0.2%CVE-2025-49979MEDIUMWordPress Media Hygiene plugin <= 4.0.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-6664MEDIUMCodeAstro Patient Record Management System cross-site request forgeryEPSS 0.2%CVE-2026-28104MEDIUMWordPress Site Suggest plugin <= 1.3.9 - Broken Access Control vulnerabilityEPSS 0.2%