Fallos del tipo CWE-862
7075 resultadosCVE-2026-39488MEDIUMWordPress SureCart plugin <= 4.0.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2023-32959MEDIUMWordPress MetroStore theme <= 1.3.2 - Broken Access ControlEPSS 0.2%CVE-2025-64265MEDIUMWordPress Frontend File Manager plugin <= 23.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12675MEDIUMKiotViet Sync <= 1.8.5 - Missing Authorization to Authenticated (Subscriber+) Settings UpdateEPSS 0.2%CVE-2025-11255MEDIUMPassword Policy Manager | Password Manager <= 2.0.5 - Missing Authorization to Authenticated (Subscriber+) Configuration Log OutEPSS 0.2%CVE-2025-6730MEDIUMBonanza – WooCommerce Free Gifts Lite <= 1.0.0 - Missing Authorization to Authenticated (Subscriber+) Opt In SuccessEPSS 0.2%CVE-2025-64681LOWIn JetBrains Hub before 2025.3.104992 a race condition allowed bypass of the user limit via invitationsEPSS 0.2%CVE-2024-39546HIGHJunos OS Evolved: Local low-privilege user can gain root permissions leading to privilege escalationEPSS 0.2%CVE-2025-67581MEDIUMWordPress TrueBooker plugin <= 1.1.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-67599MEDIUMWordPress WebToffee eCommerce Marketing Automation plugin <= 2.1.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-13722MEDIUMFluent Forms <= 6.1.7 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Form Creation via AI BuilderEPSS 0.2%CVE-2025-29007MEDIUMWordPress LMSACE Connect plugin <= 3.4 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-32445LOWWordPress Elementor Website Builder plugin <= 3.35.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-67580MEDIUMWordPress Constant Contact + WooCommerce plugin <= 2.4.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-67583MEDIUMWordPress IDonate plugin <= 2.1.15 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-53323MEDIUMWordPress Pre-Publish Post Checklist plugin <= 3.1 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-29001MEDIUMWordPress WooCommerce Shop Page Builder plugin <= 2.27.7 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-67582MEDIUMWordPress Wbcom Designs plugin <= 2.1.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-10489MEDIUMSureForms – Drag and Drop Form Builder for WordPress <= 1.12.0 - Missing Authorization to Authenticated (Contributor+) Form CreationEPSS 0.2%CVE-2026-3176LOWMissing Authorization in GitLabEPSS 0.2%