Fallos del tipo CWE-862
6730 resultadosCVE-2022-0932MEDIUMMissing Authorization in saleor/saleorEPSS 1.0%CVE-2021-44792MEDIUMInformation Leakege via Unauthorized Access in Single ConnectEPSS 1.0%CVE-2021-44794MEDIUMInformation Leakege via Unauthorized Access in Single ConnectEPSS 1.0%CVE-2015-10140HIGHAjax Load More < 2.8.1.2 - Subscriber+ File Upload & DeletionEPSS 1.0%CVE-2020-36902CRITICALUBICOD Medivision Digital Signage 1.5.1 Authorization Bypass via User PrivilegesEPSS 1.0%CVE-2021-22896—Nextcloud Mail before 1.9.5 suffers from improper access control due to a missing permission check allowing other authenticated users to creEPSS 1.0%CVE-2023-50976CRITICALRedpanda before 23.1.21 and 23.2.x before 23.2.18 has missing authorization checks in the Transactions API.EPSS 1.0%CVE-2023-33477MEDIUMIn Harmonic NSG 9000-6G devices, an authenticated remote user can obtain source code by directly requesting a special path.EPSS 1.0%CVE-2021-32748MEDIUMWOPI API not protected by credentials/IP checkEPSS 1.0%CVE-2025-6441CRITICALWebinar Solution: Create live/evergreen/automated/instant webinars, stream & Zoom Meetings | WebinarIgnition <= 4.03.32 - Unauthenticated Login Token Generation to Authentication BypassEPSS 1.0%CVE-2024-6500CRITICALInPost for WooCommerce <= 1.4.0 and InPost PL <= 1.4.4 - Missing Authorization to Unauthenticated Arbitrary File Read and DeleteEPSS 1.0%CVE-2020-3400HIGHCisco IOS XE Software Web UI Authorization Bypass VulnerabilityEPSS 1.0%CVE-2020-5228HIGHOpencast allows unauthorized public access via OAI-PMHEPSS 1.0%CVE-2022-0163—Smart Forms < 2.6.71 - Subscriber+ Form Data DownloadEPSS 1.0%CVE-2023-50944MEDIUMApache Airflow: Bypass permission verification to read code of other dagsEPSS 1.0%CVE-2021-44055MEDIUMInformation leakage in Video StationEPSS 1.0%CVE-2020-36698HIGHSecurity & Malware scan by CleanTalk <= 2.50 - Missing AuthorizationEPSS 1.0%CVE-2025-1304HIGHNewsBlogger <= 0.2.5.1 - Authenticated (Subscriber+) Arbitrary File UploadEPSS 1.0%CVE-2023-39167HIGHSENEC: Storage Box V1,V2 and V3 affected by improper access control vulnerabilityEPSS 1.0%CVE-2024-50490CRITICALWordPress PegaPoll plugin <= 1.0.2 - Arbitrary Option Update to Privilege Escalation vulnerabilityEPSS 1.0%