Fallos del tipo CWE-862
6816 resultadosCVE-2025-24591MEDIUMWordPress GDPR CCPA Compliance & Cookie Consent Banner plugin <= 2.7.1 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-47112MEDIUMAuthenticated users can view job names and groups they do not have authorization to view in RundeckEPSS 0.5%CVE-2023-37987MEDIUMWordPress YourMembership Single Sign On plugin <= 1.1.3 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-37971MEDIUMWordPress WooCommerce Product Stock Alert plugin <= 2.0.1 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-37887MEDIUMWordPress WPSchoolPress plugin <= 2.2.7 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2025-24618MEDIUMWordPress ElementInvader Addons for Elementor Plugin <= 1.3.1 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-5939MEDIUMGiveWP – Donation Plugin and Fundraising Platform <= 3.13.0 - Missing Authorization to Limited Information ExposureEPSS 0.5%CVE-2024-13677HIGHGetBookingsWp - Appointments & Bookings Plugin Basic Version <= 1.1.27 - Authenticated (Subscriber+) Privilege Escalation via Account TakeoverEPSS 0.5%CVE-2024-13752MEDIUMWP Project Manager <= 2.6.17 - Missing Authorization to Authenticated (Subscriber+) Limited Arbitrary Options UpdateEPSS 0.5%CVE-2023-50882MEDIUMWordPress ProfilePress plugin <= 4.13.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-47805MEDIUMWordPress WPCafe plugin <= 2.2.22 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-13653HIGHZoxPress - The All-In-One WordPress News Theme <= 2.12.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options UpdateEPSS 0.5%CVE-2024-9096HIGHImproper Authorization in lunary-ai/lunaryEPSS 0.5%CVE-2024-12296HIGHApus Framework <= 2.4 - Authenticated (Subscriber+) Arbitrary Options Update in import_page_optionsEPSS 0.5%CVE-2023-41849MEDIUMWordPress Posts Like Dislike plugin <= 1.1.0 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2026-57518HIGHPagekit CMS 1.0.18 Privilege Escalation via UserApiControllerEPSS 0.5%CVE-2023-40003MEDIUMWordPress WP Project Manager plugin <= 2.6.7 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-4941MEDIUMBEAR <= 1.1.3.3 - Missing Authorization to Product ManipulationEPSS 0.5%CVE-2026-25752CRITICALFUXA Unauthenticated Remote Arbitrary Device Tag WriteEPSS 0.5%CVE-2024-43979MEDIUMWordPress Blockbooster theme <= 1.0.10 - Broken Access Control vulnerabilityEPSS 0.5%