Fallos del tipo CWE-862
6946 resultadosCVE-2023-51376MEDIUMWordPress ProjectHuddle Client Site plugin <= 1.0.34 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-33408LOWDiscourse has Improper Authorization in "Post Edits" Report For ModeratorsEPSS 0.3%CVE-2024-10588MEDIUMDebug Tool <= 2.2 - Missing Authorization to Information ExposureEPSS 0.3%CVE-2026-25336MEDIUMWordPress Coachify theme <= 1.1.5 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-37176MEDIUMMissing Authorization check in SAP BW/4HANA Transformation and DTPEPSS 0.3%CVE-2024-13703MEDIUMCRM and Lead Management by vcita <= 2.7.5 - Missing Authorization to Authenticated (Susbcriber+) Widget ToggleEPSS 0.3%CVE-2024-56272MEDIUMWordPress Hide Category by User Role for WooCommerce plugin <= 2.1.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-3977MEDIUMprojectsend AJAX Endpoints authorizationEPSS 0.3%CVE-2025-59017MEDIUMBroken Access Control in Backend AJAX RoutesEPSS 0.3%CVE-2025-1408MEDIUMProfileGrid – User Profiles, Groups and Communities <= 5.9.4.4 - Missing Authorinzation to Authenticated (Subscriber+) Join Group Requests ManagementEPSS 0.3%CVE-2025-40837HIGHEricsson Indoor Connect 8855 - Missing Authorization VulnerabilityEPSS 0.3%CVE-2024-9671MEDIUMSystem: pdf invoices of the developer users can be seen if the url is knownEPSS 0.3%CVE-2025-67563MEDIUMWordPress Post SMTP plugin <= 3.6.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-10294MEDIUMCE21 Suite <= 2.2.0 - Missing Authorization to Unauthenticated Plugin Settings ChangeEPSS 0.3%CVE-2023-32240MEDIUMWordPress Woodmart theme <= 7.2.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-12244MEDIUMMissing Authorization in GitLabEPSS 0.3%CVE-2026-4019MEDIUMComplianz – GDPR/CCPA Cookie Consent <= 7.4.5 - Missing Authorization to Unauthenticated Private Post Content Disclosure via Consent Area REST EndpointEPSS 0.3%CVE-2024-5607MEDIUMGDPR CCPA Compliance & Cookie Consent Banner <= 2.7.0 - Missing Authorization to Settings Update and Stored Cross-Site ScriptingEPSS 0.3%CVE-2024-53813MEDIUMWordPress WP Travel plugin <= 9.6.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-57605HIGHLack of server-side authorisation on department admin assignment APIs in AiKaan IoT Platform allows authenticated users to elevate their priEPSS 0.3%