Fallos del tipo CWE-862

7018 resultados
CVE-2025-39373MEDIUMWordPress JNews Theme <= 11.6.16 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-32375MEDIUMWordPress Travel Diaries theme <= 1.2.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32339MEDIUMWordPress Bakes And Cakes theme <= 1.2.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32362MEDIUMWordPress WP Sessions Time Monitoring Full Automatic plugin <= 1.1.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-33177MEDIUMStatamic is missing authorization check on taxonomy term creation via fieldtypeEPSS 0.2%CVE-2026-32340MEDIUMWordPress Business One Page theme <= 1.3.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-6109MEDIUMFoundationAgents MetaGPT Mineflayer HTTP API index.js evaluateCode cross-site request forgeryEPSS 0.2%CVE-2025-24757MEDIUMWordPress uDesign theme <= 4.11.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-7821MEDIUMWC Plus <= 1.2.0 - Missing Authorization to Unauthenticated Settings ManipulationEPSS 0.2%CVE-2026-32334MEDIUMWordPress JobScout theme <= 1.1.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-48151HIGHBudibase: Webhook schema endpoint authorization bypass allows unauthenticated mutation of webhook and automation schemaEPSS 0.2%CVE-2026-32374MEDIUMWordPress The Minimal theme <= 1.2.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32381MEDIUMWordPress App Landing Page theme <= 1.2.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-48346MEDIUMWordPress Embed and Integrate Etsy Shop plugin <= 1.0.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-7879MEDIUMConcrete CMS 9.5.0 and below is vulnerable to File Download Authorization Bypass in submit_password()EPSS 0.2%CVE-2025-68511MEDIUMWordPress Gutenverse Form plugin <= 2.3.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-39460MEDIUMWordPress Eduma theme <= 5.6.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-26867MEDIUMWordPress Bulk theme <= 1.0.11 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32329MEDIUMWordPress Advanced Related Posts plugin <= 1.9.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32371MEDIUMWordPress Elegant Pink theme <= 1.3.3 - Broken Access Control vulnerabilityEPSS 0.2%