Falhas do tipo CWE-862

6.959 resultados
CVE-2023-40603MEDIUMWordPress Simple Org Chart plugin <= 2.3.4 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-5600MEDIUMHappy SCSS Compiler - Compile SCSS to CSS automatically <= 1.3.10 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site ScriptingEPSS 0.3%CVE-2025-7822MEDIUMWP Wallcreeper <= 1.6.1 - Missing Authorization to Authenticated (Susbcriber+) Cache Enable/DisableEPSS 0.3%CVE-2026-44554HIGHOpen WebUI: Knowledge Base Destruction and RAG Poisoning via Unauthorized Collection OverwriteEPSS 0.3%CVE-2026-24546MEDIUMWordPress GamiPress plugin <= 7.6.3 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-35716MEDIUMWordPress Copymatic plugin <= 1.9 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-64348CRITICALELOG configuration file authorization bypassEPSS 0.3%CVE-2026-12094MEDIUMAdvanced Contact Form 7 <= 1.0.0 - Missing Authorization to Unauthenticated Arbitrary Contact Form Submission Deletion via 'form_id' ParameterEPSS 0.3%CVE-2025-8357MEDIUMMedia Library Assistant <= 3.27 - Authenticated (Author+) Limited File DeletionEPSS 0.3%CVE-2023-40672MEDIUMWordPress Sticky Social Media Icons plugin <= 2.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-20164HIGHA vulnerability in the Cisco Industrial Ethernet Switch Device Manager (DM) of Cisco IOS Software could allow an authenticated, remote attacEPSS 0.3%CVE-2025-39541MEDIUMWordPress WP Simple Booking Calendar plugin <= 2.0.13 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-50031MEDIUMWordPress DB Backup <= 6.0 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2023-51670MEDIUMWordPress FunnelKit Checkout plugin <= 3.10.3 - Authenticated Arbitrary Plugin Activation vulnerabilityEPSS 0.3%CVE-2025-58680MEDIUMWordPress Gutentor plugin <= 3.5.2 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-1722MEDIUMWCFM Marketplace <= 3.7.0 - Insecure Direct Object Reference to Unauthenticated Arbitrary Refund Request CreationEPSS 0.3%CVE-2025-58678MEDIUMWordPress Accordion Plugin <= 2.3.15 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2026-8610MEDIUMTypeSquare Webfonts for ConoHa <= 2.0.4 - Missing Authorization to Authenticated (Subscriber+) Plugin Settings Modification via 'fontThemeUseType' ParameterEPSS 0.3%CVE-2025-15070MEDIUMData Exposure in Gmission Web FAXEPSS 0.3%CVE-2026-4292LOWPrivilege abuse in ModelAdmin.list_editableEPSS 0.3%