Fallos del tipo CWE-862

6838 resultados
CVE-2024-1645MEDIUMMollie Forms <= 2.6.3 - Missing AuthorizationEPSS 0.5%CVE-2026-5294CRITICALGeekyBot <= 1.2.2 - Missing Authorization to Unauthenticated Arbitrary Plugin Installation via 'geekybot_frontendajax' AJAX ActionEPSS 0.5%CVE-2026-30797CRITICALRustDesk rustdesk://config/ URI Silently Re-homes Client to Attacker-Controlled ServerEPSS 0.5%CVE-2023-2757HIGHWaiting: One-click countdowns <= 0.6.2 - Missing Authorization Checks leading to Authenticated (Subscriber+) Stored Cross-Site ScriptingEPSS 0.5%CVE-2024-3869MEDIUMCustomer Reviews for WooCommerce <= 5.46.0 - Missing Authorization to Authenticated (Subscriber+) Coupon SearchEPSS 0.5%CVE-2024-3606MEDIUMProfileGrid – User Profiles, Memberships, Groups and Communities <= 5.8.3 - Missing AuthorizationEPSS 0.5%CVE-2024-33907MEDIUMWordPress Print My Blog plugin <= 3.26.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-32599MEDIUMWordPress reCAPTCHA for all plugin <= 1.22 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-43343MEDIUMWordPress Order Tracking – WordPress Status Tracking Plugin plugin < 3.3.13 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-32586MEDIUMWordPress SoundCloud Is Gold plugin <= 2.5.1 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-2562MEDIUMGallery Metabox <= 1.5 - Missing Authorization via refresh_metaboxEPSS 0.5%CVE-2025-65112CRITICALPubNet Critical Authentication Bypass Allows Unauthenticated Package Upload and Identity SpoofingEPSS 0.5%CVE-2024-5863MEDIUMEasy Image Collage <= 1.13.5 - Missing Authorization to Authenticated (Contributor+) Data ClearanceEPSS 0.5%CVE-2023-48324MEDIUMWordPress Awesome Support HelpDesk plugin <= 6.1.4 - Broken Access control vulnerabilityEPSS 0.5%CVE-2024-5489MEDIUMWbcom Designs - Custom Font Uploader <= 2.3.4 - Missing Authorization to Font DeletionEPSS 0.5%CVE-2023-48774MEDIUMWordPress IdeaPush plugin < 8.58 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2025-31012MEDIUMWordPress Age Gate plugin <= 3.5.4 - Broken Access Control VulnerabilityEPSS 0.5%CVE-2024-13060MEDIUMImproper Authorization in mintplex-labs/anything-llmEPSS 0.5%CVE-2023-49757MEDIUMWordPress Awesome Support plugin <= 6.1.10 - Broken Access Control + CSRF vulnerabilityEPSS 0.5%CVE-2026-34976CRITICALDgraph Affected by Pre-Auth Database Overwrite + SSRF + File Read via restoreTenant Missing AuthorizationEPSS 0.5%