Fallos del tipo CWE-285
1292 resultadosCVE-2022-47409CRITICALAn issue was discovered in the fp_newsletter (aka Newsletter subscriber management) extension before 1.1.1, 1.2.0, 2.x before 2.1.2, 2.2.1 tEPSS 0.6%CVE-2021-33723—A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP2 Update 1). An authenticated attacker could change the user profileEPSS 0.6%CVE-2022-39329LOWProfile of disabled user stays accessibleEPSS 0.6%CVE-2024-12901MEDIUMFoxCMS API Endpoint Site.php improper authorizationEPSS 0.6%CVE-2025-59271HIGHRedis Enterprise Elevation of Privilege VulnerabilityEPSS 0.6%CVE-2025-61524HIGHAn issue in the permission verification module and organization/application editing interface in Casdoor v2.26.0 and before, and fixed in v.EPSS 0.6%CVE-2025-4631CRITICALProfitori 2.0.6.0 - 2.1.1.3 - Missing Authorization to Unauthenticated Privilege Escalation via stocktend_object EndpointEPSS 0.6%CVE-2021-43939HIGHElcomplus SmartPtt Improper AuthorizationEPSS 0.6%CVE-2024-7851MEDIUMSourceCodester Yoga Class Registration System Add User Users.php improper authorizationEPSS 0.6%CVE-2022-4804HIGHImproper Authorization in usememos/memosEPSS 0.6%CVE-2024-29033HIGHGoogleOAuthenticator.hosted_domain incorrectly verifies membership of an Google organization/workspaceEPSS 0.6%CVE-2024-20393HIGHCisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Privilege Escalation VulnerabilityEPSS 0.6%CVE-2024-12347MEDIUMGuangzhou Huayi Intelligent Technology Jeewms Druid Monitoring Interface index.html improper authorizationEPSS 0.6%CVE-2022-47553HIGHImproper Authorization in Ormazabal productsEPSS 0.6%CVE-2023-22348MEDIUMReading host_configs does not honour contact groupsEPSS 0.6%CVE-2024-8509HIGHMigration toolkit for virtualization: forklift-controller: empty bearer token may perform authenticationEPSS 0.6%CVE-2023-20186HIGHA vulnerability in the Authentication, Authorization, and Accounting (AAA) feature of Cisco IOS Software and Cisco IOS XE Software could allEPSS 0.6%CVE-2025-26683HIGHAzure Playwright Elevation of Privilege VulnerabilityEPSS 0.6%CVE-2021-23136MEDIUMImproper Authorization vulnerability in Gallagher Command Centre Server allows macro overrides to be performed by an unprivileged Command CeEPSS 0.6%CVE-2022-26310HIGHImproper Authorization in User Management to Vertical Privilege EscalationEPSS 0.6%