Fallos del tipo CWE-862
6960 resultadosCVE-2025-8999MEDIUMSydney <= 2.56 - Missing Authorization to Authenticated (Subscriber+) Limited Theme Options UpdateEPSS 0.3%CVE-2026-32485HIGHWordPress WP User Frontend plugin <= 4.2.8 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-41734MEDIUMMissing Authorization check in SAP NetWeaver Application Server ABAP and ABAP PlatformEPSS 0.3%CVE-2026-7558MEDIUMAge Verification & Identity Verification by Token of Trust <= 4.0.2 - Missing Authorization to Unauthenticated Information Exposure via 'tot_export_table' ParameterEPSS 0.3%CVE-2025-49287MEDIUMWordPress Product Feed for WooCommerce plugin <= 2.2.8 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2026-24004LOWFleet: Unauthenticated Android device disenrollment vulnerability via Pub/Sub endpointEPSS 0.3%CVE-2024-39596MEDIUM[CVE-2024-39596] Missing Authorization check vulnerability in SAP Enable NowEPSS 0.3%CVE-2025-11029MEDIUMgivanz Vvveb cross-site request forgeryEPSS 0.3%CVE-2025-46244MEDIUMWordPress Advanced Linked Variations for Woocommerce plugin <= 1.0.3 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-46745MEDIUMImproper Privilege ManagementEPSS 0.3%CVE-2026-25396HIGHWordPress Commerce Coinbase For WooCommerce plugin <= 1.6.6 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-1650MEDIUMMDJM Event Management <= 1.7.8.1 - Missing Authorization to Unauthenticated Arbitrary Custom Event Field DeletionEPSS 0.3%CVE-2024-41729MEDIUMInformation Disclosure vulnerability in the SAP NetWeaver BW (BEx Analyzer)EPSS 0.3%CVE-2026-27687MEDIUMMissing Authorization check in SAP S/4HANA HCM Portugal and SAP ERP HCM PortugalEPSS 0.3%CVE-2026-3225MEDIUMLearnPress <= 4.3.2.8 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Quiz Answer DeletionEPSS 0.3%CVE-2025-39352HIGHWordPress Grand Restaurant WordPress theme <= 7.0 - Arbitrary Options Deletion vulnerabilityEPSS 0.3%CVE-2025-39385MEDIUMWordPress Sirat theme <= 1.5.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-1870MEDIUMThim Kit for Elementor <= 1.3.7 - Missing Authorization to Unauthenticated Private Course DisclosureEPSS 0.3%CVE-2021-21264MEDIUMBypass of fix for CVE-2020-26231, Twig sandbox escapeEPSS 0.3%CVE-2026-56280HIGHCap-go - Privilege Inversion in Build Log Stream via SSE DisconnectEPSS 0.3%