Falhas do tipo CWE-305
147 resultadosCVE-2022-3100MEDIUMA flaw was found in the openstack-barbican component. This issue allows an access policy bypass via a query string when accessing the API.EPSS 0.4%CVE-2023-41920CRITICALAuthentication Bypass by Primary Weakness in Kiloview P1/P2 devicesEPSS 0.4%CVE-2026-30849CRITICALMantisBT SOAP API has an authentication bypass vulnerability on MySQLEPSS 0.4%CVE-2024-8642MEDIUMEclipse EDC: Consumer pull transfer token validation checks not appliedEPSS 0.4%CVE-2023-46611MEDIUMWordPress YOP Poll plugin <= 6.5.28 - Vote Manipulation Due to Broken Captcha Control VulnerabilityEPSS 0.4%CVE-2026-0869HIGHApplication User custom defined accounts are not properly password protected in Brocade ASCG 3.4.0EPSS 0.4%CVE-2026-6266HIGHAap-controller: aap-gateway: account hijacking and unauthorized access via unverified email linkingEPSS 0.4%CVE-2024-5956MEDIUMThis vulnerability allows unauthenticated remote attackers to bypass authentication and gain partial data access to the vulnerable Trellix IEPSS 0.4%CVE-2023-28727CRITICALPanasonic AiSEG2 versions 2.00J through 2.93A allows adjacent attackers bypass authentication due to mishandling of X-Forwarded-For headers.EPSS 0.4%CVE-2025-68609MEDIUMAuthentication bypass in Aries due to misconfigurationEPSS 0.4%CVE-2025-68435CRITICALZerobyte has Authentication Bypass by Primary WeaknessEPSS 0.4%CVE-2026-32730HIGHApostropheCMS MFA/TOTP Bypass via Incorrect MongoDB Query in Bearer Token MiddlewareEPSS 0.4%CVE-2024-6637HIGHWooCommerce - Social Login <= 2.7.3 - Unauthenticated Privilege Escalation via One-Time PasswordEPSS 0.4%CVE-2024-5957MEDIUMThis vulnerability allows unauthenticated remote attackers to bypass authentication and gain APIs access of the Manager.EPSS 0.4%CVE-2025-51663HIGHA vulnerability found in IPRateLimit implementation of FileCodeBox up to 2.2 allows remote attackers to bypass ip-based rate limit protectioEPSS 0.4%CVE-2026-3591MEDIUMA stack use-after-return flaw in SIG(0) handling code may enable ACL bypassEPSS 0.4%CVE-2025-3757CRITICALAuthentication Bypass in OpenPubKeyEPSS 0.4%CVE-2022-38700HIGHmultimedia subsystem has a permission bypass vulnerability. LAN attackers can bypass permission control and get control of camera service.EPSS 0.4%CVE-2024-20463MEDIUMCisco ATA 190 Series Analog Telephone Adapter Firmware Command Injection and Denial of Service VulnerabilityEPSS 0.3%CVE-2026-40039HIGHPachno 1.0.6 Open Redirection via return_to ParameterEPSS 0.3%