Falhas do tipo CWE-862
7.039 resultadosCVE-2025-67562MEDIUMWordPress Image Caption Hover Pro plugin < 20.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32658HIGHDell Automation Platform versions prior to 2.0.0.0, contains a missing authorization vulnerability. A low privileged attacker with remote acEPSS 0.2%CVE-2025-1528MEDIUMSearch and filter pro <= 2.5.19 - Missing Authorization to Authenticated (Subscriber+) Post Meta ExposureEPSS 0.2%CVE-2025-11370MEDIUMDepicter <= 4.0.7 - Missing Authorization to Unauthenticated Display Rule UpdatesEPSS 0.2%CVE-2025-23189MEDIUMMissing Authorization Check in SAP NetWeaver and ABAP Platform (SDCCN)EPSS 0.2%CVE-2025-69031MEDIUMWordPress Arcane theme <= 3.6.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12469MEDIUMFunnelKit Automations – Email Marketing Automation and CRM for WordPress & WooCommerce <= 3.6.4.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Email SendingEPSS 0.2%CVE-2025-1233MEDIUMLafka Plugin <= 7.1.0 - Missing Authorization to Authenticated (Subscriber+) Theme Option UpdateEPSS 0.2%CVE-2026-60118MEDIUMHi.Events < 1.11.0 Hidden Ticket Enumeration via Order Creation EndpointEPSS 0.2%CVE-2026-24534MEDIUMWordPress Booter plugin <= 1.5.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-47587LOWMissing authorization check in SAP Cash Management (Cash Operations)EPSS 0.2%CVE-2025-66082MEDIUMWordPress WpEvently plugin <= 5.0.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-66080MEDIUMWordPress WP Cookie Notice for GDPR, CCPA & ePrivacy Consent plugin <= 4.0.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-40571MEDIUMNamelessMC: Reactions on private or blocking profile posts can be modified without proper authorizationEPSS 0.2%CVE-2026-53730HIGHDataEase: Unauthorized Access to Engine Database via previewSql EndpointEPSS 0.2%CVE-2025-14272HIGHRockwell Automation FactoryTalk Analytics PavilionXEPSS 0.2%CVE-2026-48887MEDIUMWordPress JS Help Desk plugin <= 3.0.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-22458MEDIUMWordPress Wanderland theme <= 1.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-56213MEDIUMCapgo - Unauthenticated Cross-Tenant Metrics Poisoning via upsert_version_meta RPCEPSS 0.2%CVE-2026-58448HIGHyudao-cloud < 2026.06 - BPM Module Broken Access Control via process-instance APIEPSS 0.2%