Fallos del tipo CWE-284
4443 resultadosCVE-2025-21586MEDIUMVulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Web Runtime SEC). Supported versions that are EPSS 0.3%CVE-2025-30713MEDIUMVulnerability in the PeopleSoft Enterprise HCM Talent Acquisition Manager product of Oracle PeopleSoft (component: Job Opening). The suppoEPSS 0.3%CVE-2026-28276HIGHInitiative Allows Unauthenticated Access to Uploaded Documents via Public /uploads/ EndpointEPSS 0.3%CVE-2025-9415MEDIUMGreenCMS index.php unrestricted uploadEPSS 0.3%CVE-2025-5184MEDIUMSummer Pearl Group Vacation Rental Management Platform HTTP Response Header information disclosureEPSS 0.3%CVE-2026-44730HIGHOpenCTI: Privilege escalation via graphQL API abusable by organization admins, due to incorrect ACL on userEdit relationAddEPSS 0.3%CVE-2024-32969LOWvantage6 collaboration admins can extend their influence by expanding the collaborationEPSS 0.3%CVE-2026-8766MEDIUMKilo-Org kilocode Environment Variable config.ts load information disclosureEPSS 0.3%CVE-2019-10127—A vulnerability was found in postgresql versions 11.x prior to 11.3. The Windows installer for BigSQL-supplied PostgreSQL does not lock downEPSS 0.3%CVE-2026-21960MEDIUMVulnerability in the Oracle Applications DBA product of Oracle E-Business Suite (component: Java utils). Supported versions that are affectEPSS 0.3%CVE-2019-18308—A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with local access to the MS3000 ServerEPSS 0.3%CVE-2019-18309—A vulnerability has been identified in SPPA-T3000 MS3000 Migration Server (All versions). An attacker with local access to the MS3000 ServerEPSS 0.3%CVE-2025-14199MEDIUMVerysync 微力同步 Web Administration text.txt unrestricted uploadEPSS 0.3%CVE-2026-5330MEDIUMSourceCodester/mayuri_k Best Courier Management System User Delete ajax.php access controlEPSS 0.3%CVE-2023-43814LOWExposure of poll options and votes to unauthorized users in DiscourseEPSS 0.3%CVE-2025-15423MEDIUMEmpireSoft EmpireCMS connect.php CheckSaveTranFiletype unrestricted uploadEPSS 0.3%CVE-2026-35231HIGHVulnerability in the Oracle Financial Services Transaction Filtering product of Oracle Financial Services Applications (component: User InteEPSS 0.3%CVE-2019-12670MEDIUMCisco IOS XE Software IOx Guest Shell Namespace Protection VulnerabilityEPSS 0.3%CVE-2024-24776LOW Incorrect Authorization leads to Channel Member Count LeakEPSS 0.3%CVE-2024-23488LOWFiles of archived channels accessible with the “Allow users to view archived channels” option disabledEPSS 0.3%