Fallos del tipo CWE-862

7000 resultados
CVE-2025-5803MEDIUMWordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.8.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24610MEDIUMWordPress MetForm Pro plugin <= 3.9.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-52721MEDIUMWordPress Global Gallery Plugin <= 9.2.3 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-63078MEDIUMWordPress Restaurant Menu by MotoPress plugin <= 2.4.11 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-30927MEDIUMWordPress Wordapp plugin <= 1.7.0 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-42726MEDIUMWordPress AWP Classifieds plugin <= 4.4.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-68896MEDIUMWordPress WDV One Page Docs plugin <= 1.2.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-62247LOWMissing Authorization in Collection Provider component in the Liferay Portal 7.4.0 through 7.4.3.132, and Liferay DXP 2025.Q2.0 through 2025EPSS 0.2%CVE-2025-68507MEDIUMWordPress Icegram plugin <= 3.1.35 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25437MEDIUMWordPress GZSEO plugin <= 2.0.14 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2023-7290MEDIUMPaytium: Mollie payment forms & donations <= 4.3.7 - Missing Authorization in 'check_for_verified_profiles'EPSS 0.2%CVE-2026-42439MEDIUMOpenClaw < 2026.4.10 - SSRF Policy Bypass in Browser Tabs Action RoutesEPSS 0.2%CVE-2026-40782MEDIUMWordPress WPAdverts plugin <= 2.3.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-49979MEDIUMWordPress Media Hygiene plugin <= 4.0.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-45284LOWMissing authorization check in SAP Student Life Cycle Management (SLcM)EPSS 0.2%CVE-2025-6664MEDIUMCodeAstro Patient Record Management System cross-site request forgeryEPSS 0.2%CVE-2023-7293MEDIUMPaytium: Mollie payment forms & donations <= 4.3.7 - Missing Authorization in 'check_mollie_account_details'EPSS 0.2%CVE-2026-27368MEDIUMWordPress Coming Soon Page, Under Construction & Maintenance Mode by SeedProd plugin <= 6.19.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-5410MEDIUMMist Community Edition middleware.py session_start_response cross-site request forgeryEPSS 0.2%CVE-2026-25469MEDIUMWordPress ViaBill – WooCommerce plugin <= 1.1.53 - Settings Change vulnerabilityEPSS 0.2%