Fallos del tipo CWE-862
6867 resultadosCVE-2024-32798HIGHWordPress WP Travel Engine plugin <= 5.8.0 - Price Manipulation vulnerabilityEPSS 0.3%CVE-2023-7067MEDIUMShopLentor <= 2.8.1 - Improper Authorization via woolentor_template_storeEPSS 0.3%CVE-2024-12266MEDIUMELEX WooCommerce Dynamic Pricing and Discounts <= 2.1.7 - Missing AuthorizationEPSS 0.3%CVE-2025-2933HIGHEmail Notifications for Updates <= 1.1.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options UpdateEPSS 0.3%CVE-2024-54242MEDIUMWordPress Simple Notification plugin <= 1.3 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-1649MEDIUMCategorify <= 1.0.7.4 - Missing Authorization in categorifyAjaxDeleteCategoryEPSS 0.3%CVE-2025-31863MEDIUMWordPress Agency Toolkit plugin <= 1.0.24 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-44052MEDIUMWordPress HelloAsso plugin <= 1.1.10 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-47268MEDIUMMissing authorization vulnerability in AddOns functionality in Synology Surveillance Station before 9.2.2-11575 and 9.2.2-9575 allows remoteEPSS 0.3%CVE-2024-3072MEDIUMACF Front End Editor <= 2.0.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Content UpdateEPSS 0.3%CVE-2024-1388MEDIUMYuki <= 1.3.13 - Missing Authorization to Authenticated (Subscriber+) Theme Setting ResetEPSS 0.3%CVE-2024-1653MEDIUMCategorify <= 1.0.7.4 - Missing Authorization in categorifyAjaxUpdateFolderPositionEPSS 0.3%CVE-2024-33593MEDIUMWordPress Smart Forms plugin <= 2.6.91 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-63293MEDIUMFairSketch Rise Ultimate Project Manager & CRM 3.9.4 is vulnerable to Insecure Permissions. A remote authenticated user can append comments EPSS 0.3%CVE-2024-1652MEDIUMCategorify <= 1.0.7.4 - Missing Authorization in categorifyAjaxClearCategoryEPSS 0.3%CVE-2024-12104MEDIUMVisual Website Collaboration, Feedback & Project Management – Atarim <= 4.0.9 - Missing Authorization to Authenticated (Subscriber+) Project Page/File DeletionEPSS 0.3%CVE-2025-3912MEDIUMWS Form LITE – Drag & Drop Contact Form Builder for WordPress <= 1.10.35 - Missing Authorization to Unauthenticated Sensitive Information ExposureEPSS 0.3%CVE-2023-46605MEDIUMWordPress Convertful – Your Ultimate On-Site Conversion Tool plugin <= 2.5 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-7381MEDIUMGeo Controller <= 8.6.9 - Missing Authorization to Unauthenticated Shortcode ExecutionEPSS 0.3%CVE-2024-34753MEDIUMWordPress Radio Player plugin <= 2.0.73 - Broken Access Control vulnerabilityEPSS 0.3%