Fallos del tipo CWE-862
7039 resultadosCVE-2026-24999MEDIUMWordPress Alma plugin <= 5.16.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-62081MEDIUMWordPress Live Shopping & Shoppable Videos For WooCommerce plugin <= 2.2.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39656MEDIUMWordPress Razorpay for WooCommerce plugin <= 4.8.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39608MEDIUMWordPress iPOSpays Gateways WC plugin <= 1.3.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2023-45247HIGHSensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect CEPSS 0.2%CVE-2025-68976MEDIUMWordPress Eagle Booking plugin <= 1.3.4.3 - Settings Change vulnerabilityEPSS 0.2%CVE-2025-14450MEDIUMWallet System for WooCommerce <= 2.7.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Wallet Balance ManipulationEPSS 0.2%CVE-2025-64636MEDIUMWordPress Donation Thermometer plugin <= 2.2.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25321MEDIUMWordPress SupportCandy plugin <= 3.4.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32350MEDIUMWordPress Chocolate House theme <= 1.1.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32382MEDIUMWordPress Digital Download theme <= 1.1.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-66104MEDIUMWordPress Offload, AI & Optimize with Cloudflare Images plugin <= 1.9.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12165MEDIUMWebcake – Landing Page Builder <= 1.1 - Missing Authorization to Authenticated (Subscriber+) Settings UpdateEPSS 0.2%CVE-2025-12180MEDIUMQi Blocks <= 1.4.3 - Missing Authorization to Authenticated (Contributor+) Plugin Settings UpdateEPSS 0.2%CVE-2026-39588MEDIUMWordPress NM Gift Registry and Wishlist Lite plugin <= 5.13 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39509MEDIUMWordPress Directorist plugin <= 8.5.10 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32347MEDIUMWordPress Restaurant and Cafe theme <= 1.2.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32379MEDIUMWordPress Rara Academic theme <= 1.2.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25415MEDIUMWordPress WPBookit Pro plugin <= 1.6.18 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32425MEDIUMWordPress Payment Gateway Pix For GiveWP plugin <= 2.2.3 - Broken Access Control vulnerabilityEPSS 0.2%