Fallos del tipo CWE-862
6795 resultadosCVE-2024-10272HIGHBroken Access Control in lunary-ai/lunaryEPSS 0.6%CVE-2024-43932MEDIUMWordPress The Plus Addons for Elementor plugin <= 5.6.2 - Broken Access Control vulnerabilityEPSS 0.6%CVE-2023-51360MEDIUMWordPress Essential Blocks plugin <= 4.2.0 - Multiple Subscriber+ Broken Access Control vulnerabilityEPSS 0.6%CVE-2024-3936MEDIUMThe Post Grid – Shortcode, Gutenberg Blocks and Elementor Addon for Post Grid <= 7.6.1 - Missing AuthorizationEPSS 0.6%CVE-2024-1047MEDIUMThemeIsle SDK <= Various Versions - Missing AuthorizationEPSS 0.6%CVE-2023-40203MEDIUMWordPress MailChimp Forms by MailMunch plugin <= 3.1.4 - Broken Access ControlEPSS 0.6%CVE-2024-33667MEDIUMAn issue was discovered in Zammad before 6.3.0. An authenticated agent could perform a remote Denial of Service attack by calling an endpoinEPSS 0.6%CVE-2024-3206MEDIUMDifferent Menu in Different Pages – Control Menu Visibility (All in One) <= 2.3.2 - Missing Authorization to Menu DuplicationEPSS 0.6%CVE-2023-1022MEDIUMWP Meta SEO <= 4.5.3 - Missing Authorization in 'wpmsGGSaveInformation'EPSS 0.6%CVE-2021-4074MEDIUMWHMCS Bridge <= 6.1 Subscriber+ Stored Cross-Site ScriptingEPSS 0.6%CVE-2024-48645HIGHIn Minecraft mod "Command Block IDE" up to and including version 0.4.9, a missing authorization (CWE-862) allows any user to modify "functioEPSS 0.6%CVE-2023-23887MEDIUMWordPress Easy Google Analytics for WordPress plugin <= 1.6.0 - Broken Access Control vulnerabilityEPSS 0.6%CVE-2025-14944MEDIUMBackup Migration <= 2.0.0 - Missing Authorization to Unauthenticated Backup Upload to Offline StorageEPSS 0.6%CVE-2026-35438HIGHWindows Admin Center Elevation of Privilege VulnerabilityEPSS 0.6%CVE-2024-12822CRITICALMedia Manager for UserPro <= 3.12.0 - Missing Authorization to Unauthenticated Arbitrary Options UpdateEPSS 0.6%CVE-2023-0958MEDIUMInisev Plugins (Various Versions) - Missing Authorization on handle_installation functionEPSS 0.6%CVE-2021-24779—WP Debugging < 2.11.0 - Unauthenticated Plugin's Settings UpdateEPSS 0.6%CVE-2023-22489LOWFlarum is missing authorization in discussion repliesEPSS 0.6%CVE-2023-4198MEDIUMDolibarr ERP CRM (<= 17.0.3) Improper Access ControlEPSS 0.6%CVE-2023-35093MEDIUMWordPress MasterStudy LMS Plugin <= 3.0.8 is vulnerable to Broken Access ControlEPSS 0.6%