Fallos del tipo CWE-862

7033 resultados
CVE-2025-60094MEDIUMWordPress Stackable Plugin <= 3.18.1 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-58599MEDIUMWordPress Order Delivery Date for WooCommerce Plugin <= 4.1.0 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-48350MEDIUMWordPress AutoWP plugin <= 2.2.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-53341MEDIUMWordPress Stratus Theme <= 4.2.5 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-60123MEDIUMWordPress HivePress Claim Listings plugin <= 1.1.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-60143MEDIUMWordPress Netgsm plugin <= 2.9.69 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-8996MEDIUMLayout Builder Advanced Permissions - Moderately critical - Access bypass - SA-CONTRIB-2025-097EPSS 0.2%CVE-2025-58251MEDIUMWordPress Sticky Header Effects for Elementor Plugin <= 2.1.2 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-49052MEDIUMWordPress Netease Music plugin <= 3.2.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-59551MEDIUMWordPress Revive.so Plugin <= 2.0.6 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-60122MEDIUMWordPress HivePress Claim Listings plugin <= 1.1.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-66135MEDIUMWordPress Imager for Elementor plugin <= 2.0.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-53236MEDIUMWordPress UDesign Core plugin <= 4.14.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-60148MEDIUMWordPress Subscribe to Download plugin <= 2.0.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-15445MEDIUMRestaurant Cafeteria <= 0.4.6 - Subscriber+ Arbitrary Plugin Installation/ActivationEPSS 0.2%CVE-2025-60128MEDIUMWordPress Delisho Plugin <= 1.1.3 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-58617MEDIUMWordPress F4 Media Taxonomies Plugin <= 1.1.4 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-49051MEDIUMWordPress WP Meta and Date Remover plugin <= 2.3.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-2488MEDIUMProfileGrid <= 5.9.8.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Message DeletionEPSS 0.2%CVE-2024-13816MEDIUMAiomatic - AI Content Writer, Editor, ChatBot & AI Toolkit <= 2.3.6 - Missing Authorization to Authenticated (Subscriber+) Multiple Administrator ActionsEPSS 0.2%