Fallos del tipo CWE-862
7018 resultadosCVE-2026-32434MEDIUMWordPress VW Fitness theme <= 4.3.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12041MEDIUMERI File Library <= 1.1.0 - Missing Authorization to Unauthenticated Protected File DownloadEPSS 0.2%CVE-2026-39675MEDIUMWordPress Court Reservation plugin <= 1.10.11 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-64276MEDIUMWordPress Survey Maker plugin <= 5.1.9.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39673MEDIUMWordPress iZooto plugin <= 3.7.20 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32435MEDIUMWordPress VW Pet Shop theme <= 1.4.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-5572MEDIUMTechnostrobe HI-LED-WR120-G2 cross-site request forgeryEPSS 0.2%CVE-2025-2042MEDIUMhuang-yk student-manage cross-site request forgeryEPSS 0.2%CVE-2026-0635MEDIUMResponsive Accordion Slider <= 1.2.2 - Missing Authorization to Authenticated (Contributor+) Slider Update via 'resp_accordion_silder_save_images'EPSS 0.2%CVE-2025-12979MEDIUMWelcart e-Commerce <= 2.11.24 - Missing Authorization to Unauthenticated Information ExposureEPSS 0.2%CVE-2025-10694MEDIUMUser Feedback – Create Interactive Feedback Form, User Surveys, and Polls in Seconds <= 1.8.0 - Missing Authorization to Information DisclosureEPSS 0.2%CVE-2025-12891MEDIUMSurvey Maker <= 5.1.9.4 - Missing Authorization to Unauthenticated Information ExposureEPSS 0.2%CVE-2025-11051MEDIUMSourceCodester Pet Grooming Management Software cross-site request forgeryEPSS 0.2%CVE-2025-31609MEDIUMWordPress WPCargo Track & Trace plugin <= 8.0.2 - Insecure Direct Object References (IDOR) vulnerabilityEPSS 0.2%CVE-2025-5766MEDIUMcode-projects Laundry System cross-site request forgeryEPSS 0.2%CVE-2026-33495MEDIUMOry Oathkeeper has an authentication bypass by usage of untrusted headerEPSS 0.2%CVE-2026-32439MEDIUMWordPress BigHearts theme <= 3.1.14 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12042MEDIUMCourse Booking System <= 6.1.5 - Missing Authorization to Unauthenticated Booking Data ExportEPSS 0.2%CVE-2025-49888HIGHWordPress PW WooCommerce On Sale! plugin <= 1.39 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-39639MEDIUMWordPress RPS Include Content plugin <= 1.2.2 - Broken Access Control vulnerabilityEPSS 0.2%