Fallos del tipo CWE-862
7021 resultadosCVE-2025-67571MEDIUMWordPress WPFunnels plugin <= 3.6.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-35598MEDIUMVikunja has Missing Authorization on CalDAV Task ReadEPSS 0.2%CVE-2026-40133MEDIUMMissing Authorization check in SAP S/4HANA Condition MaintenanceEPSS 0.2%CVE-2025-42912MEDIUMMissing Authorization check in SAP HCM (My Timesheet Fiori 2.0 application)EPSS 0.2%CVE-2025-54037MEDIUMWordPress News Kit Elementor Addons plugin <= 1.3.4 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-42917MEDIUMMissing Authorization check in SAP HCM (Approve Timesheets Fiori 2.0 application)EPSS 0.2%CVE-2025-48335MEDIUMWordPress Responsive Plus plugin <= 3.2.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-49922MEDIUMWordPress WPeMatico RSS Feed Fetcher plugin <= 2.8.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-9184MEDIUM24liveblog <= 2.2 - Missing Authorization to Authenticated (Author+) Settings Modification via update_lb24_token AJAX actionEPSS 0.2%CVE-2024-50573MEDIUMIn JetBrains Hub before 2024.3.47707 improper access control allowed users to generate permanent tokens for unauthorized servicesEPSS 0.2%CVE-2025-62881MEDIUMWordPress WP-Lister Lite for eBay plugin <= 3.8.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-39465MEDIUMWordPress Advanced Google Maps plugin <= 5.8.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-47163HIGHQuest Bot: Unprivileged users can create and remove AutoMod rules.EPSS 0.2%CVE-2025-62882MEDIUMWordPress Seriously Simple Podcasting plugin <= 3.13.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-53815HIGHOpenClaw < 2026.5.19 - Channel Allowlist Bypass in Message Read ActionsEPSS 0.2%CVE-2026-33161LOWCraft CMS: Anonymous "assets/image-editor" calls returns private asset editor metadata to unauthorized usersEPSS 0.2%CVE-2026-27686MEDIUMMissing Authorization check in SAP Business Warehouse (Service API)EPSS 0.2%CVE-2026-35179MEDIUMWWBN AVideo Unauthenticated Instagram Graph API Proxy via publishInstagram.json.phpEPSS 0.2%CVE-2026-10715MEDIUMCamaleon CMS 2.9.2 - Improper authorization in draft autosave endpointEPSS 0.2%CVE-2023-46212MEDIUMWordPress WP EXtra Plugin <= 6.2 is vulnerable to Broken Access ControlEPSS 0.2%