Fallos del tipo CWE-862

7048 resultados
CVE-2025-64356MEDIUMWordPress Insert PHP Code Snippet plugin <= 1.4.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-68556MEDIUMWordPress HAPPY plugin <= 1.0.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39680MEDIUMWordPress Diet Calorie Calculator plugin <= 1.1.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32397MEDIUMWordPress Filter & Grids plugin <= 3.5.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39644MEDIUMWordPress Wp Ultimate Review plugin <= 2.3.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-42960MEDIUMMissing Authorization Check in SAP Business Warehouse and SAP BW/4HANA BEx ToolsEPSS 0.2%CVE-2026-39676MEDIUMWordPress Download Manager plugin <= 3.3.52 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39535MEDIUMWordPress Display Eventbrite Events plugin <= 6.5.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-14103MEDIUMMissing Authorization in GitLabEPSS 0.2%CVE-2026-39609MEDIUMWordPress Wava Payment plugin <= 0.3.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39652MEDIUMWordPress iGMS Direct Booking plugin <= 1.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-44558MEDIUMOpen WebUI: Channel Access Grants Bypass filter_allowed_access_grantsEPSS 0.2%CVE-2026-32410MEDIUMWordPress WBW Currency Switcher for WooCommerce plugin <= 2.2.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2022-30731MEDIUMImproper access control vulnerability in My Files prior to version 13.1.00.193 allows attackers to access arbitrary private files in My FileEPSS 0.2%CVE-2026-32409MEDIUMWordPress Forminator plugin <= 1.50.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39563MEDIUMWordPress Share This Image plugin <= 2.12 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39612MEDIUMWordPress KuteShop theme <= 4.2.9 - Arbitrary Shortcode Execution vulnerabilityEPSS 0.2%CVE-2026-27484LOWOpenClaw Discord moderation authorization used untrusted sender identity in tool-driven flowsEPSS 0.2%CVE-2026-39678MEDIUMWordPress Pinpoint Booking System plugin <= 2.9.9.6.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-31916MEDIUMWordPress Latest Post Shortcode plugin <= 14.2.1 - Broken Access Control vulnerabilityEPSS 0.2%