Fallos del tipo CWE-862
6802 resultadosCVE-2023-25067MEDIUMWordPress We’re Open! plugin <= 1.45 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-25911HIGHWordPress MoveTo plugin <= 6.2 - Unauthenticated Arbitrary File Deletion vulnerabilityEPSS 0.5%CVE-2023-51672HIGHWordPress FunnelKit Checkout plugin <= 3.10.3 - Unauthenticated Arbitrary Post/Page Deletion vulnerabilityEPSS 0.5%CVE-2023-25486MEDIUMWordPress Clone plugin <= 2.3.7 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2025-53825CRITICALDokploy's Preview Deployments are vulnerable to Remote Code ExecutionEPSS 0.5%CVE-2023-23825LOWWordPress Spectra – WordPress Gutenberg Blocks plugin <= 2.3.0 - Broken Access Control + CSRF on Import_WPforms vulnerabilityEPSS 0.5%CVE-2024-43310MEDIUMWordPress Print Labels with Barcodes. Create price tags, product labels, order labels for WooCommerce plugin <= 3.4.9 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2025-62614HIGHBookLore Media API Authentication BypassEPSS 0.5%CVE-2023-2714MEDIUMGroundhogg <= 2.7.9.8 - Missing Authorization to Update LicenseEPSS 0.5%CVE-2023-25703MEDIUMWordPress Meta slider and carousel with lightbox plugin <= 1.6.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-23725MEDIUMWordPress Shortcodes by Angie Makes plugin <= 3.46 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2020-24672CRITICALABB Base Software for SoftControl Remote Code Execution vulnerabilityEPSS 0.5%CVE-2024-10529MEDIUMKognetiks Chatbot for WordPress <= 2.1.7 - Missing Authorization to Authenticated (Subscriber+) Assistant DeletionEPSS 0.5%CVE-2023-28623MEDIUMUnauthorized user can register an account in specific configurations in ZulipEPSS 0.5%CVE-2022-47604MEDIUMWordPress AJAX Thumbnail Rebuild plugin <= 1.13 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-37903HIGHMastodon has improper authorship check on audience extension for existing postsEPSS 0.5%CVE-2024-10531MEDIUMKognetiks Chatbot for WordPress <= 2.1.7 - Missing Authorization to Authenticated (Subscriber+) Assistant UpdateEPSS 0.5%CVE-2024-35686MEDIUMWordPress Sensei LMS plugin <= 4.23.1 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-23715MEDIUMWordPress JobBoardWP – Job Board Listings and Submissions plugin <= 1.2.2 - IDOR Leading To Job Removal VulnerabilityEPSS 0.5%CVE-2024-33652MEDIUMWordPress Client Dash plugin <= 2.2.1 - Broken Access Control vulnerabilityEPSS 0.5%