Fallos del tipo CWE-862
7019 resultadosCVE-2026-24592MEDIUMWordPress Auto Affiliate Links plugin <= 6.8.8.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-57972MEDIUMWordPress Helpdesk Support Ticket System for WooCommerce plugin <= 2.1.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-8860MEDIUMTourfic <= 2.14.5 - Missing Authorization in Multiple FunctionsEPSS 0.2%CVE-2026-32905HIGHOpenClaw < 2026.5.4 - Unauthorized Device-Pairing Bootstrap Code Issuance via Chat CommandEPSS 0.2%CVE-2025-42974MEDIUMMissing Authorization Check in SAP NetWeaver and ABAP Platform (SDCCN)EPSS 0.2%CVE-2025-13419MEDIUMGuest posting / Frontend Posting / Front Editor – WP Front User Submit <= 5.0.0 - Missing Authorization to Unauthenticated Media DeletionEPSS 0.2%CVE-2025-57995MEDIUMWordPress DethemeKit For Elementor Plugin <= 2.1.10 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-1787MEDIUMLearnPress Export Import <= 4.1.0 - Missing Authentication to Unauthenticated Migrated Course DeletionEPSS 0.2%CVE-2025-24653MEDIUMWordPress Admin and Site Enhancements (ASE) Pro Plugin <= 7.6.1.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12847MEDIUMAll in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic <= 4.8.9 - Missing Authorization to Authenticated (Contributor+) Arbitrary Media DeletionEPSS 0.2%CVE-2026-6703MEDIUMResponsive Blocks <= 2.2.1 - Missing Authorization to Authenticated (Contributor+) Arbitrary Modification via AJAX ActionsEPSS 0.2%CVE-2025-69359MEDIUMWordPress Creator LMS plugin <= 1.1.12 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-58221MEDIUMWordPress PilotPress Plugin <= 2.0.36 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-2518MEDIUMFastX <= 1.0.2 - Missing Authorization to Authenticated (Subscriber+) Limited Plugin Installation and ActivationEPSS 0.2%CVE-2025-66117HIGHWordPress Easy Form plugin <= 2.7.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-58957MEDIUMWordPress VPSUForm Plugin <= 3.2.20 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-69364MEDIUMWordPress Breeze plugin <= 2.2.21 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-42984MEDIUMMissing Authorization check in SAP S/4HANA (Manage Central Purchase Contract application)EPSS 0.2%CVE-2025-24744MEDIUMWordPress Bridge Core plugin <= 3.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-66054HIGHWordPress LearnPress plugin <= 4.2.9.4 - Broken Access Control vulnerabilityEPSS 0.2%