Falhas do tipo CWE-862

7.039 resultados
CVE-2026-54830HIGHWordPress Five Star Restaurant Reservations plugin <= 2.7.19 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-47350MEDIUMTYPO3 CMS - Broken Access Control in DataHandlerEPSS 0.2%CVE-2025-15327MEDIUMTanium addressed an improper access controls vulnerability in Deploy.EPSS 0.2%CVE-2026-1935MEDIUMCompany Posts for LinkedIn <= 1.0.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary LinkedIn Post Data DeletionEPSS 0.2%CVE-2026-47343HIGHTYPO3 CMS - Destructive Actions on File Mount FoldersEPSS 0.2%CVE-2026-54835HIGHWordPress Five Star Restaurant Menu plugin <= 2.5.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-47444MEDIUMWordPress FiboSearch plugin <= 1.32.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-40774HIGHWordPress Booking Package plugin <= 1.7.06 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-45442MEDIUMWordPress Presto Player plugin <= 4.1.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-48873HIGHWordPress Montonio for WooCommerce plugin <= 10.1.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-47351MEDIUMTYPO3 CMS - Broken Access Control in ClipboardEPSS 0.2%CVE-2025-68850HIGHWordPress Sell Downloads plugin <= 1.1.12 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-68036HIGHWordPress CubeWP plugin <= 1.1.27 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-49065HIGHWordPress Hippoo Mobile App for WooCommerce plugin <= 1.9.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-52818HIGHWordPress Trusty Whistleblowing plugin <= 2.0.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-58210MEDIUMWordPress Makeaholic Theme <= 1.8.5 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2024-13335MEDIUMSastra Essential Addons for Elementor – Free Elementor Addons, Widgets and Templates <= 1.0.14 - Missing Authorization to Spexo Theme InstallEPSS 0.2%CVE-2026-42174MEDIUMKirby: User avatar creation, replacement and deletion are not gated by user update permissionsEPSS 0.2%CVE-2025-55038HIGHAutomationDirect CLICK PLUS Missing AuthorizationEPSS 0.2%CVE-2024-44156HIGHA path deletion vulnerability was addressed by preventing vulnerable code from running with privileges. This issue is fixed in macOS SequoiaEPSS 0.2%