Falhas do tipo CWE-862

6.960 resultados
CVE-2025-60116MEDIUMWordPress Grand Conference Theme Custom Post Type plugin < 2.6.4 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-48881CRITICALWordPress TrueBooker plugin <= 1.1.9 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-43358HIGHA permissions issue was addressed with additional sandbox restrictions. This issue is fixed in iOS 18.7 and iPadOS 18.7, iOS 26 and iPadOS 2EPSS 0.3%CVE-2025-22291MEDIUMWordPress LTL Freight Quotes – Worldwide Express Edition plugin <= 5.0.20 - Arbitrary Content Deletion vulnerabilityEPSS 0.3%CVE-2024-31347MEDIUMWordPress Tracking Code Manager plugin <= 2.1.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-51376MEDIUMWordPress ProjectHuddle Client Site plugin <= 1.0.34 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-56243MEDIUMWordPress WPSSO Core plugin <= 18.18.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-10637MEDIUMSocial Feed Gallery <= 4.9.2 - Missing Authorization to Unauthenticated Information ExposureEPSS 0.3%CVE-2025-67965MEDIUMWordPress Homey Core plugin <= 2.4.3 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-24539MEDIUMWordPress Protección de datos – RGPD plugin <= 0.68 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-10588MEDIUMDebug Tool <= 2.2 - Missing Authorization to Information ExposureEPSS 0.3%CVE-2024-34803MEDIUMWordPress Fastly plugin <= 1.2.25 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-39689MEDIUMWordPress eShipper Commerce plugin <= 2.16.12 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-39994MEDIUMWordPress ARMember Premium plugin <= 5.9.2 - Broken Access ControlEPSS 0.3%CVE-2024-32783MEDIUMWordPress Advanced Testimonial Carousel for Elementor plugin <= 3.0.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-12980HIGHPost Grid Gutenberg Blocks for News, Magazines, Blog Websites – PostX <= 5.0.3 - Missing Authorization to Unauthenticated Sensitive Information ExposureEPSS 0.3%CVE-2026-44571MEDIUMOpen WebUI: Improper Authorization in Standard Channels Allows Message Updates with Read PermissionEPSS 0.3%CVE-2024-32787MEDIUMWordPress Secure Copy Content Protection and Content Locking plugin <= 3.7.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-64249MEDIUMWordPress Protect WP Admin plugin <= 4.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-47601HIGHWordPress MaxiBlocks plugin <= 2.1.0 - Arbitrary Option Update to Privilege Escalation vulnerabilityEPSS 0.3%