Fallos del tipo CWE-284

4408 resultados
CVE-2022-4711MEDIUMRoyal Elementor Addons <= 1.3.59 - Insufficient Access Control to Menu Settings UpdateEPSS 0.7%CVE-2023-38848An issue in rmc R Beauty CLINIC Line v.13.6.1 allows a remote attacker to obtain sensitive information via crafted GET request.EPSS 0.7%CVE-2022-41652MEDIUMWordPress Quiz And Survey Master plugin <= 7.3.10 - Bypass vulnerabilityEPSS 0.7%CVE-2021-44460HIGHImproper access control in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier allows users with deactivated accounts to acEPSS 0.7%CVE-2025-2216MEDIUMzzskzy Warehouse Refinement Management System SaveCrash.ashx UploadCrash unrestricted uploadEPSS 0.7%CVE-2024-37147MEDIUMGLPI allows Authenticated File Upload to Restricted TicketsEPSS 0.7%CVE-2026-1194MEDIUMMineAdmin Swagger information disclosureEPSS 0.7%CVE-2022-0170MEDIUMImproper Access Control in chocobozzz/peertubeEPSS 0.7%CVE-2020-8122A missing check in Nextcloud Server 14.0.3 could give recipient the possibility to extend the expiration date of a share they received.EPSS 0.7%CVE-2025-63223CRITICALThe Axel Technology StreamerMAX MK II devices (firmware versions 0.8.5 to 1.0.3) are vulnerable to Broken Access Control due to missing authEPSS 0.7%CVE-2025-0582MEDIUMitsourcecode Farm Management System add-pig.php unrestricted uploadEPSS 0.7%CVE-2024-22234HIGHCVE-2024-22234: Broken Access Control in Spring Security With Direct Use of isFullyAuthenticatedEPSS 0.7%CVE-2024-22206CRITICAL@clerk/nextjs auth() and getAuth() methods vulnerable to insecure direct object reference (IDOR)EPSS 0.7%CVE-2025-30460HIGHA permissions issue was addressed by removing vulnerable code and adding additional checks. This issue is fixed in macOS Sequoia 15.4, macOSEPSS 0.7%CVE-2024-1823MEDIUMCodeAstro Simple Voting System Backend users.php access controlEPSS 0.7%CVE-2024-1294MEDIUMSunshine Photo Cart: Free Client Galleries for Photographers <= 3.0.24 - Unauthenticated Sensitive Information Exposure via InvoiceEPSS 0.7%CVE-2019-25157MEDIUMEthex Contracts Monthly Jackpot EthexJackpot.sol access controlEPSS 0.7%CVE-2023-2902MEDIUMNFine Rapid Development Platform access controlEPSS 0.7%CVE-2022-1958MEDIUMFileCloud NTFS access controlEPSS 0.7%CVE-2021-1477MEDIUMCisco Firepower Management Center Software Policy VulnerabilityEPSS 0.7%