Fallos del tipo CWE-862
6946 resultadosCVE-2025-62033MEDIUMWordPress Togo theme < 1.0.4 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-4887MEDIUMSourceCodester Online Student Clearance System cross-site request forgeryEPSS 0.3%CVE-2024-6155MEDIUMGreenshift – animation and page builder blocks <= 9.0.0 - Missing Authorization to Authenticated (Subscriber+) Server-Side Request Forgery and Stored Cross-Site ScriptingEPSS 0.3%CVE-2026-35606MEDIUMFile Browser discloses text file content via /api/resources endpoint bypassing Perm.Download checkEPSS 0.3%CVE-2025-1891MEDIUMshishuocms cross-site request forgeryEPSS 0.3%CVE-2025-64179MEDIUMlakeFS: Unauthenticated access to API usage metricsEPSS 0.3%CVE-2026-28557HIGHwpForo Forum < 2.4.16 Privilege Escalation via Role Synchronization HandlerEPSS 0.3%CVE-2025-15260MEDIUMMyRewards – Loyalty Points and Rewards for WooCommerce <= 5.6.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Loyalty Rule ModificationEPSS 0.3%CVE-2026-41454HIGHWeKan < 8.35 Missing Authorization via Integration REST APIEPSS 0.3%CVE-2025-22363MEDIUMWordPress Allada T-shirt Designer for Woocommerce plugin <= 1.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-47486MEDIUMWordPress Gutenberg & Elementor Templates Importer For Responsive plugin <= 3.1.9 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-47469MEDIUMWordPress Media Hygiene plugin <= 4.0.0 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-3437MEDIUMMotors – Car Dealership & Classified Listings Plugin <= 1.4.66 - Missing Authorization to Authenticated (Subscriber+) Wizard Set-upEPSS 0.3%CVE-2025-39554MEDIUMWordPress AI Text to Speech plugin <= 3.0.3 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-31923MEDIUMWordPress CSS3 Accordions for WordPress plugin <= 3.0 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2026-4094HIGHFOX – Currency Switcher Professional for WooCommerce <= 1.4.5 - Missing Authorization to Authenticated (Contributor+) Configuration DeletionEPSS 0.3%CVE-2025-49324MEDIUMWordPress Job Board Manager plugin <= 2.1.60 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-22702MEDIUMWordPress Photography Theme <= 7.7.2 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-23961MEDIUMWordPress WordPress Graphs & Charts Plugin <= 2.0.8 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-9626MEDIUMEditorial Assistant by Sovrn <= 1.3.3 - Missing Authorization to Authenticated (Subscriber+) Attachment Upload and Set Post Featured ImageEPSS 0.3%