Fallos del tipo CWE-862

6846 resultados
CVE-2022-47594MEDIUMWordPress Essential Blocks for Gutenberg plugin <= 3.8.5 - Broken Access ControlEPSS 0.4%CVE-2026-4029HIGHDatabase Backup for WordPress <= 2.5.2 - Missing Authorization to Unauthenticated Database ExportEPSS 0.4%CVE-2024-51660MEDIUMWordPress Easy Accordion Gutenberg Block plugin <= 1.2.3 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-32129MEDIUMWordPress Editorialmag theme <= 1.1.9 - Authenticated Arbitrary Plugin ActivationEPSS 0.4%CVE-2026-48592MEDIUMMissing authorization check on save-job event handler in oban_webEPSS 0.4%CVE-2023-4025MEDIUMRadio Player <= 2.0.73 - Missing Authorization to Player UpdateEPSS 0.4%CVE-2023-4027MEDIUMRadio Player <= 2.0.73 - Missing Authorization to Settings UpdateEPSS 0.4%CVE-2024-54155LOWIn JetBrains YouTrack before 2024.3.51866 improper access control allowed listing of project names during app import without authenticationEPSS 0.4%CVE-2026-27836HIGHphpMyFAQ Allows Unauthenticated Account Creation via WebAuthn Prepare EndpointEPSS 0.4%CVE-2024-1123MEDIUMEventPrime – Events Calendar, Bookings and Tickets <= 3.4.2 - Missing Authorization to Arbitrary Post OverwriteEPSS 0.4%CVE-2024-38690MEDIUMWordPress iPanorama 360 plugin <= 1.8.3 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-2557MEDIUMWPCS – WordPress Currency Switcher Professional <= 1.1.9 - Missing Authorization to Arbitrary Custom Drop-Down Currency Switcher EditingEPSS 0.4%CVE-2024-49325MEDIUMWordPress Photo Gallery Builder plugin <= 3.0 - Broken Access Control to Notice Dismissal vulnerabilityEPSS 0.4%CVE-2024-43159MEDIUMWordPress Masteriyo LMS plugin <= 1.11.6 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-30534MEDIUMWordPress Calendarista Basic Edition plugin <= 3.0.5 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-38792MEDIUMWordPress ConveyThis Translate plugin <= 234 - Non-arbitrary Options Update vulnerabilityEPSS 0.4%CVE-2026-30911HIGHApache Airflow: Execution API HITL Endpoints Missing Per-Task AuthorizationEPSS 0.4%CVE-2024-37475MEDIUMWordPress Newspack Newsletters plugin <= 2.13.2 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2026-40265MEDIUMNote Mark has Broken Access Control on Asset DownloadEPSS 0.4%CVE-2024-31098HIGHWordPress New Order Notification for Woocommerce plugin <= 2.0.2 - Broken Access Control vulnerabilityEPSS 0.4%