Fallos del tipo CWE-862
6854 resultadosCVE-2024-30544MEDIUMWordPress Whizzy plugin <= 1.1.18 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2025-32544HIGHWordPress WooCommerce Loyal Customers plugin <= 2.6 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-25907MEDIUMWordPress WP Media folder plugin <= 5.7.2 - Plugin Settings Change vulnerabilityEPSS 0.4%CVE-2022-41619MEDIUMWordPress Image Zoom Plugin <= 1.8.8 is vulnerable to Broken Access ControlEPSS 0.4%CVE-2025-5953HIGHWP Human Resource Management 2.0.0 - 2.2.17 - Missing Authorization to Authenticated (Employee+) Privilege Escalation via wp_ajax_hrm_insert_employee AJAX ActionEPSS 0.4%CVE-2026-44321HIGHfree5GC: SMF UPI POST /upi/v1/upNodesLinks exits the SMF process on overlapping UE pools (unauthenticated, reachable Fatalf)EPSS 0.4%CVE-2026-4117MEDIUMCalJ <= 1.5 - Authenticated (Subscriber+) Arbitrary Settings Modification via 'save-obtained-key' ActionEPSS 0.4%CVE-2024-25922MEDIUMWordPress Peach Payments Gateway plugin <= 3.1.9 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-45649MEDIUMWordPress Appointment Hour Booking plugin <= 1.4.23 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2025-30915MEDIUMWordPress Small Package Quotes – Worldwide Express Edition plugin <= 5.2.19 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2025-25953MEDIUMSerosoft Solutions Pvt Ltd Academia Student Information System (SIS) EagleR v1.0.118 was discovered to contain an Azure JWT access token expEPSS 0.4%CVE-2023-46146HIGHWordPress Themify Ultra theme <= 7.3.5 - Multiple Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-45061MEDIUMWordPress WP Job Openings plugin <= 3.4.1 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-46610MEDIUMWordPress Quill Forms plugin <= 3.3.0 - Broken Access Control + CSRF vulnerabilityEPSS 0.4%CVE-2025-30916MEDIUMWordPress Residential Address Detection plugin <= 2.5.4 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2026-33353HIGHSoft Serve: Authenticated repo import can clone server-local private repositoriesEPSS 0.4%CVE-2025-30944HIGHWordPress Tablesome Table Premium <= 1.1.23 - Broken Access Control VulnerabilityEPSS 0.4%CVE-2024-54254MEDIUMWordPress Message Filter for Contact Form 7 plugin <= 1.6.3 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2026-8934MEDIUMCross-Project Information Leakage in Google App Engine UIEPSS 0.4%CVE-2024-28167MEDIUMMissing Authorization check in SAP Group Reporting Data Collection (Enter Package Data)EPSS 0.4%