Fallos del tipo CWE-862
7039 resultadosCVE-2025-66076MEDIUMWordPress Woostify Sites Library plugin <= 1.6.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-20189MEDIUMCisco Prime Infrastructure Information Disclosure VulnerabilityEPSS 0.2%CVE-2023-45246HIGHSensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect CEPSS 0.2%CVE-2026-39687MEDIUMWordPress Rapid Car Check Vehicle Data plugin <= 2.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25364MEDIUMWordPress Client Invoicing by Sprout Invoices plugin <= 20.8.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24577MEDIUMWordPress Pie Register plugin <= 3.8.4.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32336MEDIUMWordPress Rara Business theme <= 1.3.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39562MEDIUMWordPress Client Invoicing by Sprout Invoices plugin <= 20.8.10 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-49375MEDIUMWordPress HomeLancer theme <= 1.0.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-36995MEDIUMLow-privileged user could create experimental itemsEPSS 0.2%CVE-2026-32363MEDIUMWordPress WPLifeCycle plugin <= 3.3.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32337MEDIUMWordPress Preschool and Kindergarten theme <= 1.2.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25440MEDIUMWordPress Essential Addons for Elementor plugin < 6.6.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24556MEDIUMWordPress ElementCamp plugin <= 2.3.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-49349MEDIUMWordPress Reuters Direct plugin <= 3.0.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24375MEDIUMWordPress Ultimate Gift Cards For WooCommerce plugin <= 3.2.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24945MEDIUMWordPress Ultimate Addons for Contact Form 7 plugin <= 3.5.34 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-3770MEDIUMSourceCodester Computer Laboratory Management System cross-site request forgeryEPSS 0.2%CVE-2026-39663MEDIUMWordPress TrueBooker plugin <= 1.1.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-22445MEDIUMWordPress Apimo Connector plugin <= 2.6.5.2 - Broken Access Control vulnerabilityEPSS 0.2%