Falhas do tipo CWE-862
6.960 resultadosCVE-2026-25335MEDIUMWordPress Secure Copy Content Protection and Content Locking plugin <= 5.0.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-24737MEDIUMWordPress WP Helper Premium plugin <= 4.6.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-45399HIGHOpen WebUI: Low-privilege authenticated users can enumerate and stop global background tasks, causing system-wide chat disruptionEPSS 0.3%CVE-2025-41114HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%CVE-2025-49860MEDIUMWordPress Majestic Support plugin <= 1.1.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-41344HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%CVE-2026-34184HIGHMissing Authorization in Hydrosystem Control SystemEPSS 0.3%CVE-2024-54269MEDIUMWordPress Notibar plugin <= 2.1.4 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-8996MEDIUMBackup and Staging by WP Time Capsule <= 1.22.26 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Exposure via download_recent_decrypted_file_wptc FunctionEPSS 0.3%CVE-2025-60127MEDIUMWordPress CopySafe Web Protection plugin <= 5.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-50052MEDIUMArbitrary post deletion via Playbooks /ignore-thread endpointEPSS 0.3%CVE-2025-41339HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%CVE-2025-41345HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%CVE-2026-20155HIGHCisco Evolved Programmable Network Manager Improper Authorization VulnerabilityEPSS 0.3%CVE-2025-3915MEDIUMAeropage Sync for Airtable <= 3.2.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post DeletionEPSS 0.3%CVE-2025-41340HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%CVE-2025-52824HIGHWordPress Mobile DJ Manager plugin <= 1.7.8.3 - Privilege Escalation vulnerabilityEPSS 0.3%CVE-2025-8492MEDIUMSalon Booking System <= 10.22 - Missing Authorization to Unauthenticated AJAX Actions ExecutionEPSS 0.3%CVE-2025-60088MEDIUMWordPress WebinarIgnition plugin <= 4.06.04 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-41342HIGHMissing Authorization vulnerability in CanalDenuncia.appEPSS 0.3%