Fallos del tipo CWE-862
7019 resultadosCVE-2026-2518MEDIUMFastX <= 1.0.2 - Missing Authorization to Authenticated (Subscriber+) Limited Plugin Installation and ActivationEPSS 0.2%CVE-2025-69359MEDIUMWordPress Creator LMS plugin <= 1.1.12 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-24653MEDIUMWordPress Admin and Site Enhancements (ASE) Pro Plugin <= 7.6.1.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-57995MEDIUMWordPress DethemeKit For Elementor Plugin <= 2.1.10 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-13419MEDIUMGuest posting / Frontend Posting / Front Editor – WP Front User Submit <= 5.0.0 - Missing Authorization to Unauthenticated Media DeletionEPSS 0.2%CVE-2025-57972MEDIUMWordPress Helpdesk Support Ticket System for WooCommerce plugin <= 2.1.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-42974MEDIUMMissing Authorization Check in SAP NetWeaver and ABAP Platform (SDCCN)EPSS 0.2%CVE-2026-1787MEDIUMLearnPress Export Import <= 4.1.0 - Missing Authentication to Unauthenticated Migrated Course DeletionEPSS 0.2%CVE-2026-6703MEDIUMResponsive Blocks <= 2.2.1 - Missing Authorization to Authenticated (Contributor+) Arbitrary Modification via AJAX ActionsEPSS 0.2%CVE-2025-58016MEDIUMWordPress CF7 Submissions Plugin <= 0.26 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-24095MEDIUMMissing Permission Check on Analyze Configuration PageEPSS 0.2%CVE-2025-57969MEDIUMWordPress Hide WP Toolbar Plugin <= 2.7 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-32905HIGHOpenClaw < 2026.5.4 - Unauthorized Device-Pairing Bootstrap Code Issuance via Chat CommandEPSS 0.2%CVE-2024-13775MEDIUMWooCommerce Support Ticket System <= 17.8 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post Deletion and Information ExposureEPSS 0.2%CVE-2025-23991MEDIUMWordPress Product Size Charts Plugin for WooCommerce plugin <= 2.4.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-48013MEDIUMQuick Node Block - Moderately critical - Access bypass - SA-CONTRIB-2025-065EPSS 0.2%CVE-2025-65028MEDIUMRallly Has an IDOR Vulnerability in Vote Update Endpoint Allows Unauthorized Manipulation of Participant VotesEPSS 0.2%CVE-2023-5600LOWMissing Authorization in GitLabEPSS 0.2%CVE-2026-42377HIGHWordPress SureForms Pro plugin <= 2.8.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-13741MEDIUMSchedule Post Changes With PublishPress Future: Unpublish, Delete, Change Status, Trash, Change Categories <= 4.9.2 - Missing Authorization to Authenticated (Contributor+) Authors' Emails ExposureEPSS 0.2%