Fallos del tipo CWE-862

6730 resultados

CVE-2024-52382CRITICALWordPress Matix Popup Builder plugin <= 1.0.0 - Arbitrary Option Update to Privilege Escalation vulnerabilityEPSS 1.0%CVE-2024-6805HIGHMissing Authorization Checks in NI VeriStand Gateway for File Transfer ResourcesEPSS 1.0%CVE-2023-0556CRITICALContentStudio <= 1.2.5 - Missing AuthorizationEPSS 1.0%CVE-2023-34063CRITICALAria Automation contains a Missing Access Control vulnerability. An authenticated malicious actor may exploit this vulnerability leading EPSS 0.9%CVE-2025-46554MEDIUMXWiki missing authorization when accessing the wiki level attachments list and metadata via REST APIEPSS 0.9%CVE-2024-13767HIGHLive2DWebCanvas <= 1.9.11 - Authenticated (Subscriber+) Arbitrary File DeletionEPSS 0.9%CVE-2021-4339HIGHuListing <= 1.6.6 - Unauthenticated Information DisclosureEPSS 0.9%CVE-2025-31194CRITICALAn authentication issue was addressed with improved state management. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS EPSS 0.9%CVE-2024-12848HIGHSKT Page Builder <= 4.6 - Authenticated (Subscriber+) Arbitrary File UploadEPSS 0.9%CVE-2026-1499HIGHWP Duplicate <= 1.1.8 - Authenticated (Subscriber+) Arbitrary File Upload via 'process_add_site' AJAX ActionEPSS 0.9%CVE-2026-42613CRITICALGrav: Privilege Escalation via Missing Server-Side Validation of groups/accessEPSS 0.9%CVE-2017-2662MEDIUMA flaw was found in Foreman's katello plugin version 3.4.5. After setting a new role to allow restricted access on a repository with a filteEPSS 0.9%CVE-2024-2417HIGHUser Registration – Custom Registration Form, Login Form, and User Profile WordPress Plugin <= 3.1.5 - Missing Authorization to Authenticated (Subscriber+) Privilege EscalationEPSS 0.9%CVE-2023-0923HIGHOdh-notebook-controller-container: missing authorization allows for file contents disclosureEPSS 0.9%CVE-2022-27669—An unauthenticated user can use functions of XML Data Archiving Service of SAP NetWeaver Application Server for Java - version 7.50, to whicEPSS 0.9%CVE-2023-47179HIGHWordPress WooODT Lite plugin <= 2.4.6 - Arbitrary Site Option Update vulnerabilityEPSS 0.9%CVE-2025-24181CRITICALA permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sequoia 15.4, macOS Sonoma 14.7.5, macOS VenturEPSS 0.9%CVE-2022-23617MEDIUMMissing authorization in xwiki-platformEPSS 0.9%CVE-2013-3703HIGHNo write permission check in change_role commandEPSS 0.9%CVE-2023-4723MEDIUMElementor Addon Elements <= 1.12.7 - Missing Authorization to Sensitive Information ExposureEPSS 0.9%

← anteriorpágina 14 / 337siguiente →