Fallos del tipo CWE-862
7021 resultadosCVE-2025-62882MEDIUMWordPress Seriously Simple Podcasting plugin <= 3.13.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-62881MEDIUMWordPress WP-Lister Lite for eBay plugin <= 3.8.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-9184MEDIUM24liveblog <= 2.2 - Missing Authorization to Authenticated (Author+) Settings Modification via update_lb24_token AJAX actionEPSS 0.2%CVE-2026-10715MEDIUMCamaleon CMS 2.9.2 - Improper authorization in draft autosave endpointEPSS 0.2%CVE-2025-49922MEDIUMWordPress WPeMatico RSS Feed Fetcher plugin <= 2.8.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-47163HIGHQuest Bot: Unprivileged users can create and remove AutoMod rules.EPSS 0.2%CVE-2026-27686MEDIUMMissing Authorization check in SAP Business Warehouse (Service API)EPSS 0.2%CVE-2026-27792MEDIUMSeerr missing authentication on pushSubscription endpointsEPSS 0.2%CVE-2025-66133MEDIUMWordPress WP Cookie Notice for GDPR, CCPA & ePrivacy Consent plugin <= 4.0.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-43583MEDIUMOpenClaw 2026.4.10 < 2026.4.14 - Loss of Group Tool-Policy Context in Delivery Queue RecoveryEPSS 0.2%CVE-2026-3770MEDIUMSourceCodester Computer Laboratory Management System cross-site request forgeryEPSS 0.2%CVE-2026-39622MEDIUMWordPress Education Base theme <= 3.0.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24999MEDIUMWordPress Alma plugin <= 5.16.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2023-45247HIGHSensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect CEPSS 0.2%CVE-2025-66076MEDIUMWordPress Woostify Sites Library plugin <= 1.6.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24577MEDIUMWordPress Pie Register plugin <= 3.8.4.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24375MEDIUMWordPress Ultimate Gift Cards For WooCommerce plugin <= 3.2.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-49349MEDIUMWordPress Reuters Direct plugin <= 3.0.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-20189MEDIUMCisco Prime Infrastructure Information Disclosure VulnerabilityEPSS 0.2%CVE-2025-48127MEDIUMWordPress Push notification for Mobile and Web app plugin <= 2.0.3 - Broken Access Control vulnerabilityEPSS 0.2%