Fallos del tipo CWE-862
6803 resultadosCVE-2023-4686MEDIUMWP Customer Reviews <= 3.6.6 - Authenticated (Subscriber+) Sensitive Information ExposureEPSS 0.5%CVE-2024-1322MEDIUMDirectorist <= 7.8.4 - Missing Authorization to Unauthenticated Settings ChangeEPSS 0.5%CVE-2024-33652MEDIUMWordPress Client Dash plugin <= 2.2.1 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-24524MEDIUMSAP S/4 HANA Map Treasury Correspondence Format Data does not perform necessary authorization check for an authenticated user, resulting in EPSS 0.5%CVE-2026-22182HIGHwpDiscuz before 7.6.47 - Unauthenticated Email Notification Flood via wpdCheckNotificationTypeEPSS 0.5%CVE-2023-27462LOWA vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.3). The client query handler of the affected application fails EPSS 0.5%CVE-2024-4520HIGHImproper Access Control in gaizhenbiao/chuanhuchatgptEPSS 0.5%CVE-2024-42470MEDIUMCometVisu Backend for openHAB has a sensitive information disclosure vulnerabilityEPSS 0.5%CVE-2024-1984MEDIUMGraphene <= 2.9.2 - Missing AuthorizationEPSS 0.5%CVE-2024-34146MEDIUMJenkins Git server Plugin 114.v068a_c7cc2574 and earlier does not perform a permission check for read access to a Git repository over SSH, aEPSS 0.5%CVE-2024-4223CRITICALTutor LMS <= 2.7.0 - Missing AuthorizationEPSS 0.5%CVE-2022-45390MEDIUMA missing permission check in Jenkins loader.io Plugin 1.0.1 and earlier allows attackers with Overall/Read permission to enumerate credentiEPSS 0.5%CVE-2023-34376MEDIUMWordPress Change WooCommerce Add To Cart Button Text plugin <= 1.3 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-23896MEDIUMWordPress URL Shortener by MyThemeShop Plugin <= 1.0.17 is vulnerable to Broken Access ControlEPSS 0.5%CVE-2024-38748MEDIUMWordPress EleForms plugin <= 2.9.9.9 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-28230MEDIUMIn JetBrains YouTrack before 2024.1.25893 attaching/detaching workflow to a project was possible without project admin permissionsEPSS 0.5%CVE-2023-32507HIGHWordPress Woo Custom Emails plugin <= 2.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-1850MEDIUMAI Post Generator | AutoWriter <= 3.3 - Missing AuthorizationEPSS 0.5%CVE-2024-43924MEDIUMWordPress Responsive Lightbox & Gallery plugin <= 2.4.7 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-23848MEDIUMMissing permission checks in Synopsys Jenkins Coverity Plugin 3.0.2 and earlier allow attackers with Overall/Read permission to connect to aEPSS 0.5%