Fallos del tipo CWE-862
6795 resultadosCVE-2023-48779MEDIUMWordPress 360 Javascript Viewer plugin <= 1.7.11 - Broken Access Control vulnerabilityEPSS 0.6%CVE-2023-51515HIGHWordPress Uncode Core plugin <= 2.8.8 - Privilege Escalation vulnerabilityEPSS 0.6%CVE-2023-0993MEDIUMShield Security <= 17.0.17 - Missing AuthorizationEPSS 0.5%CVE-2024-48538CRITICALIncorrect access control in the firmware update and download processes of Neye3C v4.5.2.0 allows attackers to access sensitive information bEPSS 0.5%CVE-2024-37296MEDIUMAimeos HTML client vulnerable to digital products download without proper payment status checkEPSS 0.5%CVE-2023-25469MEDIUMWordPress Easy Table of Contents plugin <= 2.0.45.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2025-30716HIGHVulnerability in the Oracle Common Applications product of Oracle E-Business Suite (component: CRM User Management Framework). Supported veEPSS 0.5%CVE-2024-31342MEDIUMWordPress Gallery Exporter plugin <= 1.3 - Arbitrary File Download vulnerabilityEPSS 0.5%CVE-2024-1079MEDIUMQuiz Maker <= 6.5.2.4 - Missing Authorization to Unauthenticated Quiz Data RetrievalEPSS 0.5%CVE-2023-1335MEDIUMRapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'ucss_connect'EPSS 0.5%CVE-2025-5894HIGHHonding Technology Smart Parking Management System - Missing AuthorizationEPSS 0.5%CVE-2023-1336MEDIUMRapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'ajax_deactivate'EPSS 0.5%CVE-2024-11194HIGHClassified Listing – Classified ads & Business Directory Plugin <= 3.1.15.1 - Authenticated (Subscriber+) Limited Arbitrary Option UpdateEPSS 0.5%CVE-2023-1338MEDIUMRapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'attach_rule'EPSS 0.5%CVE-2023-1334MEDIUMRapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'queue_posts'EPSS 0.5%CVE-2023-1339MEDIUMRapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'uucss_update_rule'EPSS 0.5%CVE-2025-34171MEDIUMCasaOS <= 0.4.15 Unauthenticated File and Debug Data ExposureEPSS 0.5%CVE-2025-8418HIGHB Slider- Gutenberg Slider Block for WP <= 1.1.30 - Authenticated (Subscriber+) Missing Authorization to Arbitrary Plugin InstallationEPSS 0.5%CVE-2023-1333MEDIUMRapidLoad Power-Up for Autoptimize <= 1.7.1 - Missing Authorization in 'clear_page_cache'EPSS 0.5%CVE-2024-28215HIGHnGrinder before 3.5.9 allows an attacker to create or update webhook configuration due to lack of access control, which could be the cause oEPSS 0.5%