Fallos del tipo CWE-862
7033 resultadosCVE-2025-62153MEDIUMWordPress Quick Interest Slider plugin <= 3.1.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-67573MEDIUMWordPress Sailing theme < 4.4.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-0763MEDIUMUltimate Classified Listings <= 1.7 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings UpdateEPSS 0.2%CVE-2025-63023MEDIUMWordPress Payment Gateway for PayPal on WooCommerce plugin <= 9.0.53 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-62931MEDIUMWordPress MSN Partner Hub plugin <= 2.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-52866HIGHApollo Pharmacy Blood Glucose Monitoring System APG-01 BT Missing AuthorizationEPSS 0.2%CVE-2025-14508MEDIUMMediaCommander – Bring Folders to Media, Posts, and Pages <= 2.3.1 - Missing Authorization to Authenticated (Author+) Media Folder DeletionEPSS 0.2%CVE-2026-57730MEDIUMWordPress Flatsome theme <= 3.20.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-21865MEDIUMDiscourse topic conversion permission vulnerability for moderatorsEPSS 0.2%CVE-2025-67572MEDIUMWordPress PenNews theme < 6.7.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-15034MEDIUMflask-dashboard Flask-MonitoringDashboard cross-site request forgeryEPSS 0.2%CVE-2026-45007MEDIUMphpMyFAQ - Missing Permission Check on 12 Configuration API Endpoints Allows Information DisclosureEPSS 0.2%CVE-2025-8335MEDIUMcode-projects Simple Car Rental System cross-site request forgeryEPSS 0.2%CVE-2025-15524MEDIUMGallery by FooGallery <= 3.1.9 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Gallery Metadata ExposureEPSS 0.2%CVE-2025-66154MEDIUMWordPress Couponer for Elementor plugin <= 1.1.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24327MEDIUMMissing Authorization Check in SAP Strategic Enterprise Management (Balanced Scorecard in BSP Application)EPSS 0.2%CVE-2026-39543MEDIUMWordPress Tourfic plugin <= 2.21.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-44559MEDIUMOpen WebUI: Missing Access Check on Channel Members Endpoint for Standard ChannelsEPSS 0.2%CVE-2025-66159MEDIUMWordPress Walker for Elementor plugin <= 1.1.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-47742MEDIUMShopper: Missing authorization on Product admin Livewire sub-form componentsEPSS 0.2%