Falhas do tipo CWE-862
7.020 resultadosCVE-2026-7492MEDIUMMissing Authorization in GitLabEPSS 0.3%CVE-2025-62006MEDIUMWordPress WP SMS plugin <= 7.0.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-60129MEDIUMWordPress Yext Plugin <= 1.1.3 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2026-2819MEDIUMDromara RuoYi-Vue-Plus Workflow deleteByInstanceIds SaServletFilter authorizationEPSS 0.3%CVE-2024-13717MEDIUMContact Form and Calls To Action by vcita <= 2.7.1 - Missing Authorization to Authenticated (Subscriber+) Contact/Widget ToggleEPSS 0.3%CVE-2025-52800HIGHWordPress The E-Commerce ERP <= 2.1.1.3 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-68032MEDIUMWordPress Advanced WC Analytics plugin <= 3.19.0 - Settings Change vulnerabilityEPSS 0.3%CVE-2025-68569MEDIUMWordPress WP Time Slots Booking Form plugin <= 1.2.39 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-52801HIGHWordPress TheBooking Plugin <= 1.4.4 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-46232MEDIUMWordPress Download Alt Text AI plugin <= 1.9.93 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-10054MEDIUMELEX WordPress HelpDesk & Customer Ticketing System <= 3.3.1 - Missing Authorization to Authenticated (Subscriber+) Role RemovalEPSS 0.3%CVE-2024-4745MEDIUMWordPress Giveaways and Contests by RafflePress plugin <= 1.12.4 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-43573MEDIUMOpenClaw < 2026.4.10 - SSRF Policy Bypass in Existing-Session Browser Interaction RoutesEPSS 0.3%CVE-2025-67926MEDIUMWordPress Fluent Support plugin <= 1.10.4 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-40834MEDIUMThis issue was addressed by adding an additional prompt for user consent. This issue is fixed in macOS Monterey 12.7.6, macOS Sonoma 14.6, mEPSS 0.3%CVE-2026-43577HIGHOpenClaw < 2026.4.9 - Arbitrary File Read via Browser Interaction RoutesEPSS 0.3%CVE-2023-4468MEDIUMPoly Trio 8500/Trio 8800/Trio C60 Poly Lens Management Cloud Registration authorizationEPSS 0.3%CVE-2026-4261HIGHExpire Users <= 1.2.2 - Authenticated (Subscriber+) Privilege Escalation to Administrator via save_extra_user_profile_fieldsEPSS 0.3%CVE-2026-27433MEDIUMWordPress Motors theme <= 5.6.80 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-47346HIGHTYPO3 CMS - Broken Access Control in Form FrameworkEPSS 0.3%