Fallos del tipo CWE-862
6804 resultadosCVE-2021-25018—PPOM for WooCommerce < 24.0 - Subscriber+ Settings Update to Stored XSSEPSS 0.5%CVE-2021-25042—WP Visitor Statistics (Real Time Traffic) < 5.5 - Arbitrary IP Address Exclusion to Stored XSSEPSS 0.5%CVE-2023-33970MEDIUMMissing access control in internal task links feature in KanboardEPSS 0.5%CVE-2024-2109MEDIUMBooster Extension <= 1.2.0 - Basic Information Exposure via booster_extension_authorbox_shortcode_displayEPSS 0.5%CVE-2024-0908MEDIUMAdvanced Post Block – Display Posts, Pages, or Custom Posts on Your Page <= 1.13.4 - Missing Authorization to Information DisclosureEPSS 0.5%CVE-2023-33321MEDIUMWordPress EventPrime plugin <= 2.8.6 - Sensitive Data ExposureEPSS 0.5%CVE-2025-55148HIGHMissing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.EPSS 0.5%CVE-2025-24734HIGHWordPress Better Find and Replace plugin <= 1.6.7 - Privilege Escalation vulnerabilityEPSS 0.5%CVE-2024-43158HIGHWordPress Masteriyo LMS plugin <= 1.11.4 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2026-2031CRITICALGoogle Cloud Application Integration: Exposed internal APIs allow Information Disclosure and Remote Code Execution.EPSS 0.5%CVE-2023-34186MEDIUMWordPress Headless CMS plugin <= 2.0.3 - Broken Authentication vulnerabilityEPSS 0.5%CVE-2024-12202HIGHCroma Music <= 3.6 - Authenticated (Subscriber+) Arbitrary Options Update in ironMusic_ajaxEPSS 0.5%CVE-2024-32682HIGHWordPress Prime Slider plugin <= 3.13.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2025-55144MEDIUMMissing authorization in Ivanti Connect Secure before 22.7R2.9 or 22.8R2, Ivanti Policy Secure before 22.7R1.6, Ivanti ZTA Gateway before 2.EPSS 0.5%CVE-2026-28408CRITICALWeGIA lacks authentication verification in adicionar_tipo_docs_atendido.phpEPSS 0.5%CVE-2024-1677MEDIUMPrint Labels with Barcodes. Create price tags, product labels, order labels for WooCommerce <= 3.4.6 - Improper AuthorizationEPSS 0.5%CVE-2023-32963MEDIUMWordPress Predictive Search for WooCommerce plugin <= 5.8.0 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-54417MEDIUMWordPress PixProof plugin <= 2.0.1 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2022-44578MEDIUMWordPress Owl Carousel plugin <= 0.5.3 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2022-46846MEDIUMWordPress Trending/Popular Post Slider and Widget plugin <= 1.5.7 - Broken Access Control vulnerabilityEPSS 0.5%