Fallos del tipo CWE-862
6911 resultadosCVE-2024-32715HIGHWordPress Olive One Click Demo Import plugin <= 1.1.1 - Arbitrary File Download vulnerabilityEPSS 0.3%CVE-2026-34358HIGHCtrlPanel: Missing Authorization on Admin Write Endpoints Allows RBAC BypassEPSS 0.3%CVE-2026-4977MEDIUMUsersWP <= 1.2.58 - Authenticated (Subscriber+) Restricted Usermeta Modification via 'htmlvar' ParameterEPSS 0.3%CVE-2025-30958MEDIUMWordPress onOffice for WP-Websites plugin <= 6.5.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-32483MEDIUMWordPress Contact Form Email plugin <= 1.3.63 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-39447HIGHWordPress JetElements For Elementor plugin <= 2.7.4.1 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2024-4199MEDIUMBulk Posts Editing For WordPress <= 4.2.3 - Authenticated (Subscriber+) Missing AuthorizationEPSS 0.3%CVE-2025-24750MEDIUMWordPress ExactMetrics plugin <= 8.1.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-32455MEDIUMWordPress Fatal Error Notify plugin <= 1.5.2 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-39449HIGHWordPress JetWooBuilder plugin <= 2.1.18 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-22285MEDIUMWordPress Pallet Packaging for WooCommerce Plugin <= 1.1.15 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-39993MEDIUMWordPress ElementsKit Lite plugin <= 2.9.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-37172MEDIUM[CVE-2024-37172] Missing Authorization check in SAP S/4HANA Finance (Advanced Payment Management)EPSS 0.3%CVE-2024-13412HIGHCozyStay <= 1.7.0 - Missing Authorization to Arbitrary Action Execution in ajax_handlerEPSS 0.3%CVE-2023-52117MEDIUMWordPress ProfileGrid plugin <= 5.6.6 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-49057HIGHWordPress JobSearch plugin <= 3.2.7 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-65029HIGHRallly Has an IDOR Vulnerability in Participant Deletion Endpoint Allows Unauthorized Removal of Poll ParticipantsEPSS 0.3%CVE-2025-47556MEDIUMWordPress CSS3 Compare Pricing Tables for WordPress plugin <= 11.6 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2026-7624MEDIUMSEO Plugin by Squirrly SEO <= 12.4.16 - Missing Authorization to Authenticated (Contributor+) Privileged Cloud API OperationsEPSS 0.3%CVE-2025-22698MEDIUMWordPress Accessibility Suite by Ability, Inc plugin <= 4.18 - Multiple Broken Access Control vulnerabilityEPSS 0.3%