Falhas do tipo CWE-862

7.052 resultados
CVE-2025-13119MEDIUMFabian Ros/SourceCodester Simple E-Banking System cross-site request forgeryEPSS 0.2%CVE-2025-24603MEDIUMWordPress Print Labels with Barcodes. Create price tags, product labels, order labels for WooCommerce plugin <= 3.4.10 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-62883MEDIUMWordPress Premmerce User Roles plugin <= 1.0.13 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32122MEDIUMOpenEMR: Missing Authorization on Claim File Tracker UI and AJAX Endpoint (V2)EPSS 0.2%CVE-2025-23991MEDIUMWordPress Product Size Charts Plugin for WooCommerce plugin <= 2.4.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-48013MEDIUMQuick Node Block - Moderately critical - Access bypass - SA-CONTRIB-2025-065EPSS 0.2%CVE-2026-42377HIGHWordPress SureForms Pro plugin <= 2.8.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-48444MEDIUMQuick Node Block - Moderately critical - Access bypass - SA-CONTRIB-2025-064EPSS 0.2%CVE-2025-4597MEDIUMWoo Slider Pro - Drag Drop Slider Builder For WooCommerce <= 1.12 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Post DeletionEPSS 0.2%CVE-2023-5600LOWMissing Authorization in GitLabEPSS 0.2%CVE-2025-40667HIGHMissing authorization vulnerability in TCMAN GIM v11EPSS 0.2%CVE-2026-25333MEDIUMWordPress Shopwell theme <= 1.0.11 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-12113MEDIUMAppointment Booking Calendar <= 1.4.02 - Missing Authorization to Authenticated (Contributor+) Sensitive Information DisclosureEPSS 0.2%CVE-2025-68994MEDIUMWordPress Product Loops for WooCommerce plugin <= 2.1.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24967MEDIUMWordPress Amelia plugin <= 1.2.38 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12527MEDIUMPage & Post Notes <= 1.3.4 - Missing Authorization to Authenticated (Subscriber+) Note Update/DeletionEPSS 0.2%CVE-2026-9187MEDIUMAbandoned Contact Form 7 <= 2.2 - Missing Authorization to Unauthenticated Arbitrary Post Deletion via 'recover_id' ParameterEPSS 0.2%CVE-2026-39668MEDIUMWordPress Book Previewer for Woocommerce plugin <= 1.0.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25404MEDIUMWordPress WP Job Manager plugin <= 2.4.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-3445HIGHPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress <= 4.16.11 - Missing Authorization to Authenticated (Subscriber+) Membership Payment BypassEPSS 0.2%