Fallos del tipo CWE-862

6851 resultados
CVE-2023-2284MEDIUMWP Activity Log Premium <= 4.5.0 - Missing Authorization via ajax_switch_dbEPSS 0.4%CVE-2022-2987HIGHLdap WP Login / Active Directory Integration < 3.0.2 - Unauthenticated Settings Update to Auth BypassEPSS 0.4%CVE-2024-47314HIGHWordPress Sunshine Photo Cart plugin <= 3.2.8 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-37411MEDIUMWordPress Progress Planner plugin <= 0.9.1 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-23388MEDIUMImproper authorization in handler for custom URL scheme issue in "Mercari" App for Android prior to version 5.78.0 allows a remote attacker EPSS 0.4%CVE-2024-12559MEDIUMClickDesigns <= 1.8.0 - Missing Authorization to API Key Modification or RemovalEPSS 0.4%CVE-2024-47311MEDIUMWordPress Wheel of Life plugin <= 1.1.8 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-44019MEDIUMWordPress Contact Form 7 Campaign Monitor Extension plugin <= 0.4.67 - Arbitrary File Deletion vulnerabilityEPSS 0.4%CVE-2024-3305HIGHIDOR in Utarit Information's SoliClubEPSS 0.4%CVE-2024-47302MEDIUMWordPress Fluent Support plugin <= 1.8.0 - Broken Access Control on Email Verification vulnerabilityEPSS 0.4%CVE-2024-32679MEDIUMWordPress Shared Files plugin <= 1.7.16 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-1744CRITICALIDOR in Ariva Computer's Accord ORSEPSS 0.4%CVE-2024-49596MEDIUMDell Wyse Management Suite, version WMS 4.4 and prior, contain a Missing Authorization vulnerability. A high privileged attacker with remoteEPSS 0.4%CVE-2023-6876MEDIUMClever Fox – One Click Website Importer by Nayra Themes <= 25.2.0 - Missing Authorization to arbitrary theme activation via clever-fox-activate-themeEPSS 0.4%CVE-2024-38794MEDIUMWordPress Custom Query Blocks plugin <= 5.2.0 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-27625MEDIUMWordPress Site Reviews plugin <= 6.5.0 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-37269MEDIUMWordPress Masterstudy Elementor Widgets plugin <= 1.2.2 - Unauthenticated Broken Access Control vulnerabilityEPSS 0.4%CVE-2026-3646MEDIUMLTL Freight Quotes – R+L Carriers Edition <= 3.3.13 - Missing Authorization to Unauthenticated Settings UpdateEPSS 0.4%CVE-2024-32684MEDIUMWordPress WP Ultimate Review plugin <= 2.2.5 - Broken Access Control on Review vulnerabilityEPSS 0.4%CVE-2023-33968MEDIUMMissing Access Control allows User to move and duplicate tasks in KanboardEPSS 0.4%