Fallos del tipo CWE-862

6937 resultados
CVE-2026-24539MEDIUMWordPress Protección de datos – RGPD plugin <= 0.68 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-44234MEDIUMWordPress WP GPX Maps plugin <= 1.7.08 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-32787MEDIUMWordPress Secure Copy Content Protection and Content Locking plugin <= 3.7.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-22291MEDIUMWordPress LTL Freight Quotes – Worldwide Express Edition plugin <= 5.0.20 - Arbitrary Content Deletion vulnerabilityEPSS 0.3%CVE-2023-46616MEDIUMWordPress Draw Attention plugin <= 2.0.15 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-64249MEDIUMWordPress Protect WP Admin plugin <= 4.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-12980HIGHPost Grid Gutenberg Blocks for News, Magazines, Blog Websites – PostX <= 5.0.3 - Missing Authorization to Unauthenticated Sensitive Information ExposureEPSS 0.3%CVE-2026-25348MEDIUMWordPress Download Alt Text AI plugin <= 1.10.15 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-39994MEDIUMWordPress ARMember Premium plugin <= 5.9.2 - Broken Access ControlEPSS 0.3%CVE-2025-52817HIGHWordPress Abandoned Contact Form 7 plugin <= 2.2 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-39689MEDIUMWordPress eShipper Commerce plugin <= 2.16.12 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-10637MEDIUMSocial Feed Gallery <= 4.9.2 - Missing Authorization to Unauthenticated Information ExposureEPSS 0.3%CVE-2024-1857MEDIUMUltimate Gift Cards for WooCommerce – Create, Redeem & Manage Digital Gift Certificates with Personalized Templates <= 2.6.6 - Missing Authorization to Unauthenticated Information ExposureEPSS 0.3%CVE-2025-11725MEDIUMAruba HiSpeed Cache <= 3.0.2 - Missing Authorization to Unauthenticated Plugin's Settings ModificationEPSS 0.3%CVE-2024-10588MEDIUMDebug Tool <= 2.2 - Missing Authorization to Information ExposureEPSS 0.3%CVE-2025-11881MEDIUMAppPresser – Mobile App Framework <= 4.5.0 - Missing Authorization to Unauthenticated Limited Sensitive Information ExposureEPSS 0.3%CVE-2023-51376MEDIUMWordPress ProjectHuddle Client Site plugin <= 1.0.34 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-44571MEDIUMOpen WebUI: Improper Authorization in Standard Channels Allows Message Updates with Read PermissionEPSS 0.3%CVE-2026-3279MEDIUMEnable jQuery Migrate Helper <= 1.4.1 - Missing Authorization to Authenticated (Subscriber+) jQuery Version DowngradeEPSS 0.3%CVE-2025-13496MEDIUMMoosend Landing Pages <= 1.1.6 - Missing Authorization to Authenticated (Subscriber+) Option DeletionEPSS 0.3%