Fallos del tipo CWE-862

6818 resultados
CVE-2024-5993MEDIUMCliengo - Chatbot <= 3.0.2 - Missing Authorization to Authorized (Subscriber+) Chatbot Settings UpdateEPSS 0.5%CVE-2022-45851MEDIUMWordPress ShareThis Dashboard for Google Analytics plugin <= 3.1.4 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2022-45351MEDIUMWordPress Betheme premium theme <= 26.6.1 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-43341MEDIUMWordPress Hello Agency theme <= 1.0.5 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2026-5502MEDIUMTutor LMS <= 3.9.8 - Authenticated (Subscriber+) Arbitrary Course Content Manipulation via tutor_update_course_content_orderEPSS 0.5%CVE-2025-39531MEDIUMWordPress Slazzer Background Changer plugin <= 3.14 - Broken Access Control VulnerabilityEPSS 0.5%CVE-2023-39312CRITICALWordPress Avada theme <= 7.11.1 - Auth. Unrestricted Zip Extraction vulnerabilityEPSS 0.5%CVE-2024-1136MEDIUMComing Soon Page & Maintenance Mode <= 2.2.1 - Maintenance Mode BypassEPSS 0.5%CVE-2022-40975MEDIUMWordPress Post Slider plugin <= 1.6.7 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2025-64402MEDIUMApache OpenOffice: Remote documents loaded without prompt via OLE objectsEPSS 0.5%CVE-2024-50628HIGHAn issue was discovered in the web services of Digi ConnectPort LTS before 1.4.12. It allows an attacker on the local area network to achievEPSS 0.5%CVE-2026-4030HIGHDatabase Backup for WordPress <= 2.5.2 - Missing Authorization to Unauthenticated Arbitrary File Read and DeletionEPSS 0.5%CVE-2024-10900MEDIUMProfileGrid – User Profiles, Groups and Communities <= 5.9.3.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary User Meta DeletionEPSS 0.5%CVE-2023-50876MEDIUMWordPress Molongui plugin <= 4.7.3 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-51671LOWWordPress Otter Blocks plugin <= 3.0.3 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-32506MEDIUMWordPress Link Whisper Free plugin <= 0.6.3 - Unauthenticated Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-50877MEDIUMWordPress Product Filter by WBW plugin <= 2.5.0 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-49156MEDIUMWordPress GoDaddy Email Marketing plugin <= 1.4.3 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-43973MEDIUMWordPress GetPaid plugin <= 2.8.11 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-54251MEDIUMWordPress Prodigy Commerce plugin <= 3.1.2 - Broken Access Control vulnerabilityEPSS 0.5%