Fallos del tipo CWE-862
6781 resultadosCVE-2023-25035MEDIUMWordPress Quick Contact Form plugin <= 8.0.3.1 - Broken Access Control vulnerabilityEPSS 0.7%CVE-2024-8114HIGHMissing Authorization in GitLabEPSS 0.7%CVE-2021-4351MEDIUMFrontend File Manager <= 18.2 - Unauthenticated Post Meta ChangeEPSS 0.7%CVE-2024-1710HIGHAddon Library <= 1.3.76 - Missing Authorization to Authenticated (Subscriber+) Arbitrary File UploadEPSS 0.7%CVE-2024-29240MEDIUMMissing authorization vulnerability in LayoutSave webapi component in Synology Surveillance Station before 9.2.0-11289 and 9.2.0-9289 allowsEPSS 0.7%CVE-2026-0829MEDIUMFrontend File Manager Plugin <= 23.5 - Unauthenticated Arbitrary Email SendingEPSS 0.7%CVE-2022-36091HIGHXWiki Platform Web Templates vulnerable to Missing Authorization and Exposure of Private Personal Information to an Unauthorized ActorEPSS 0.7%CVE-2024-54542CRITICALAn authentication issue was addressed with improved state management. This issue is fixed in Safari 18.2, iOS 18.2 and iPadOS 18.2, macOS SeEPSS 0.7%CVE-2024-1072HIGHWebsite Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode <= 6.15.21 - Missing Authorization via seedprod_lite_new_lpageEPSS 0.7%CVE-2022-22108MEDIUMDayByDay CRM - Missing Authorization when Viewing AbsencesEPSS 0.7%CVE-2022-22107MEDIUMDayByDay CRM - Missing Authorization when Viewing AppointmentsEPSS 0.7%CVE-2022-43685HIGHCKAN through 2.9.6 account takeovers by unauthenticated users when an existing user id is sent via an HTTP POST request. This allows a user EPSS 0.7%CVE-2026-22683HIGHWindmill < 1.615.0 Operator Role Missing Authorization Checks RCEEPSS 0.7%CVE-2024-9095CRITICALImproper Authorization in lunary-ai/lunaryEPSS 0.7%CVE-2023-0619MEDIUMKraken.io Image Optimizer <= 2.6.8 - Missing Authorization to Authenticated (Subscriber+) Plugin Options UpdateEPSS 0.7%CVE-2023-6327MEDIUMShopLentor (formerly WooLentor) <= 2.8.7 - Missing Authorization via purchased_new_productsEPSS 0.7%CVE-2023-23988HIGHWordPress My Tickets plugin <= 1.9.11 - Payment Bypass VulnerabilityEPSS 0.7%CVE-2025-21396HIGHMicrosoft Account Elevation of Privilege VulnerabilityEPSS 0.7%CVE-2023-43652HIGHNon-MFA account takeover via using only SSH public key to login in jumpserverEPSS 0.7%CVE-2026-2039HIGHGFI Archiver MArc.Store Missing Authorization Authentication Bypass VulnerabilityEPSS 0.7%