Fallos del tipo CWE-862

6960 resultados
CVE-2025-53108MEDIUMHomeBox Missing User AuthorizationEPSS 0.3%CVE-2025-5900MEDIUMTenda AC9 cross-site request forgeryEPSS 0.3%CVE-2025-52804HIGHWordPress Nuss theme <= 1.3.7.1 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2024-12879MEDIUMWPBot Pro Wordpress Chatbot <= 13.5.5 - Missing Authorization to Authenticated (Subscriber+) Simple Text Response CreationEPSS 0.3%CVE-2025-15563MEDIUMBroken Access Control results in Denial of Service in NesterSoft WorkTimeEPSS 0.3%CVE-2026-3143MEDIUMTotal Upkeep <= 1.17.1 - Missing Authorization to Unauthenticated Rollback CancellationEPSS 0.3%CVE-2025-32242MEDIUMWordPress Hive Support plugin <= 1.2.5 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-12253MEDIUMSimple Ecommerce Shopping Cart Plugin- Sell products through Paypal <= 3.1.2 - Missing Authorization to Authenticated (Subscriber+) Settings Update / Data AccessEPSS 0.3%CVE-2025-2246MEDIUMMissing Authorization in GitLabEPSS 0.3%CVE-2025-30934MEDIUMWordPress 診断ジェネレータ作成プラグイン plugin <= 1.4.16 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2026-44884MEDIUMPortainer: Missing authorization on custom template file endpoint exposes template contentEPSS 0.3%CVE-2025-53304MEDIUMWordPress Contact Form – 7 : Hide Success Message plugin <= 1.1.4 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-8565HIGHPrivacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WP Legal Pages <= 3.4.3 - Missing Authorization to Authenticated (Contributor+) Arbitrary Plugin InstallationEPSS 0.3%CVE-2025-53295MEDIUMWordPress iCount Payment Gateway plugin <= 2.0.7 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-14595MEDIUMMissing Authorization in GitLabEPSS 0.3%CVE-2025-49920MEDIUMWordPress Web Accessibility By accessiBe plugin <= 2.10 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-8547HIGHInsufficient policy enforcement in Passwords in Google Chrome on Windows prior to 148.0.7778.168 allowed a remote attacker who had compromisEPSS 0.3%CVE-2025-52803HIGHWordPress Sala theme <= 1.1.3 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2026-43885HIGHWWBN AVideo: Exposure of Sensitive Information to an Unauthorized Actor and Missing AuthorizationEPSS 0.3%CVE-2026-13039MEDIUMEventin 4.0.26 - 4.1.15 - Missing Authorization to Unauthenticated Payment Bypass via REST APIEPSS 0.3%