Falhas do tipo CWE-862

7.062 resultados
CVE-2025-11692MEDIUMZip Attachments <= 1.6 - Missing Authorization to Limited File DeletionEPSS 0.2%CVE-2025-24021MEDIUMiTop doesn't have mass assignment of fields in the portal formEPSS 0.2%CVE-2026-32402MEDIUMWordPress Image Slider by Ays plugin <= 2.7.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-24757MEDIUMWordPress uDesign theme <= 4.11.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-7821MEDIUMWC Plus <= 1.2.0 - Missing Authorization to Unauthenticated Settings ManipulationEPSS 0.2%CVE-2025-39373MEDIUMWordPress JNews Theme <= 11.6.16 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-32428MEDIUMWordPress Popup Like box plugin <= 3.7.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32335MEDIUMWordPress The Conference theme <= 1.2.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-24748MEDIUMWordPress Avada theme <= 7.11.10 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-7879MEDIUMConcrete CMS 9.5.0 and below is vulnerable to File Download Authorization Bypass in submit_password()EPSS 0.2%CVE-2026-32340MEDIUMWordPress Business One Page theme <= 1.3.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-9008MEDIUMPage-list <= 6.2 - Missing Authorization to Authenticated (Contributor+) Sensitive Information Disclosure via Shortcode AttributesEPSS 0.2%CVE-2026-32370MEDIUMWordPress Influencer theme <= 1.1.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-39368MEDIUMWordPress Rootspersona plugin <= 3.7.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-39460MEDIUMWordPress Eduma theme <= 5.6.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-68511MEDIUMWordPress Gutenverse Form plugin <= 2.3.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32374MEDIUMWordPress The Minimal theme <= 1.2.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32375MEDIUMWordPress Travel Diaries theme <= 1.2.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32362MEDIUMWordPress WP Sessions Time Monitoring Full Automatic plugin <= 1.1.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32338MEDIUMWordPress Construction Landing Page theme <= 1.4.1 - Broken Access Control vulnerabilityEPSS 0.2%