Fallos del tipo CWE-862
7075 resultadosCVE-2026-57430MEDIUMWordPress SEOPress PRO plugin <= 9.1.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25402MEDIUMWordPress Knowledge Base for Documentation, FAQs with AI Assistance plugin <= 16.011.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25393MEDIUMWordPress Hello FSE theme <= 1.0.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-63002MEDIUMWordPress Sermon Manager plugin <= 2.30.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24563MEDIUMWordPress LifePress plugin <= 2.2.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25330MEDIUMWordPress PublishPress Authors plugin <= 4.10.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24380MEDIUMWordPress EventPrime plugin <= 4.2.8.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25329MEDIUMWordPress Quiz And Survey Master plugin <= 10.3.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12370MEDIUMTakeads <= 1.0.13 - Missing Authorization to Plugin Settings DeletionEPSS 0.2%CVE-2025-69093MEDIUMWordPress ShopMagic plugin <= 4.7.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-6730MEDIUMBonanza – WooCommerce Free Gifts Lite <= 1.0.0 - Missing Authorization to Authenticated (Subscriber+) Opt In SuccessEPSS 0.2%CVE-2025-12014MEDIUMNGINX Cache Optimizer <= 1.1 - Missing Authorization to Authenticated (Subscriber+) Dynamic Caching Exclusion UpdateEPSS 0.2%CVE-2026-39488MEDIUMWordPress SureCart plugin <= 4.0.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-57750MEDIUMWordPress ez Form Calculator Premium plugin <= 2.14.1.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-57760MEDIUMWordPress Sendcloud Shipping plugin <= 1.0.29 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39651MEDIUMWordPress Total Poll Lite plugin <= 4.12.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-62070MEDIUMWordPress WowRevenue plugin <= 1.2.13 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-64681LOWIn JetBrains Hub before 2025.3.104992 a race condition allowed bypass of the user limit via invitationsEPSS 0.2%CVE-2025-12389MEDIUMImport Export For WooCommerce <= 1.6.2 - Missing Authorization to Authenticated (Subscriber+) Settings UpdateEPSS 0.2%CVE-2026-42522MEDIUMA missing permission check in Jenkins GitHub Branch Source Plugin 1967.vdea_d580c1a_b_a_ and earlier allows attackers with Overall/Read permEPSS 0.2%