Falhas do tipo CWE-807
78 resultadosCVE-2025-13926CRITICALContemporary Controls BASC 20T Reliance on Untrusted Inputs in a Security DecisionEPSS 0.4%CVE-2025-59152HIGHX-Forwarded-For Header Spoofing Bypasses Litestar Rate LimitingEPSS 0.4%CVE-2024-7005HIGHInsufficient validation of untrusted input in Safe Browsing in Google Chrome prior to 127.0.6533.72 allowed a remote attacker who convinced EPSS 0.4%CVE-2025-66507HIGH1Panel – CAPTCHA Bypass via Client-Controlled FlagEPSS 0.4%CVE-2025-24369LOWAnubis has a bot protection bypass when a sophisticated attacker asks to pass a challenge of difficulty 0EPSS 0.4%CVE-2020-5252MEDIUMMalicious package may avoid detection in python auditingEPSS 0.4%CVE-2026-25958HIGHCube privilege escalation via a specially crafted requestEPSS 0.4%CVE-2024-45654MEDIUMIBM Security ReaQta improper input validationEPSS 0.3%CVE-2024-47254MEDIUMIn 2N Access Commander versions 3.1.1.2 and prior, an Insufficient
Verification of Data Authenticity vulnerability could allow an attacker EPSS 0.3%CVE-2026-33068HIGHClaude Code has a Workspace Trust Dialog Bypass via Repo-Controlled Settings FileEPSS 0.3%CVE-2026-32975MEDIUMOpenClaw < 2026.3.12 - Weak Authorization via Mutable Group Names in Zalouser AllowlistEPSS 0.3%CVE-2026-32057MEDIUMOpenClaw < 2026.2.25 - Authentication Bypass via Control UI client.id ParameterEPSS 0.3%CVE-2026-29794MEDIUMVikunja has Rate-Limit Bypass for Unauthenticated Users via Spoofed HeadersEPSS 0.3%CVE-2026-6213CRITICALRemote Spark SparkView RCEEPSS 0.3%CVE-2026-23848MEDIUMMyTube has Rate Limiting Bypass via X-Forwarded-For Header SpoofingEPSS 0.3%CVE-2026-0390MEDIUMUEFI Secure Boot Security Feature Bypass VulnerabilityEPSS 0.3%CVE-2024-11146MEDIUMTrueFiling authorization bypass via user-controlled keysEPSS 0.3%CVE-2023-45128CRITICALCSRF Token Reuse Vulnerability in fiberEPSS 0.3%CVE-2025-53717HIGHWindows Virtualization-Based Security (VBS) Enclave Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2024-5754HIGHBT: Encryption procedure host vulnerabilityEPSS 0.3%