Falhas do tipo CWE-862

7.062 resultados
CVE-2025-66128MEDIUMWordPress Sendinblue for WooCommerce plugin <= 4.0.49 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-64634MEDIUMWordPress Avada theme <= 7.13.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-63047MEDIUMWordPress ListingPro theme <= 2.9.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-57730MEDIUMWordPress Flatsome theme <= 3.20.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-49396MEDIUMWordPress Themify Builder Plugin <= 7.6.7 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-66130MEDIUMWordPress WP Views Counter plugin <= 2.1.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-42882MEDIUMMissing Authorization check in SAP NetWeaver Application Server for ABAPEPSS 0.2%CVE-2026-24540MEDIUMWordPress Integrate Google Drive plugin <= 1.5.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-64150MEDIUMA missing permission check in Jenkins Publish to Bitbucket Plugin 0.4 and earlier allows attackers with Overall/Read permission to connect tEPSS 0.2%CVE-2025-67570MEDIUMWordPress WPForms Google Sheet Connector plugin <= 4.0.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-63023MEDIUMWordPress Payment Gateway for PayPal on WooCommerce plugin <= 9.0.53 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-15350MEDIUMThe Cache Purger <= 2.3.20 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Log Deletion via 'the_log_purge' ParameterEPSS 0.2%CVE-2025-67574MEDIUMWordPress Booking calendar, Appointment Booking System plugin <= 3.2.30 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-64632MEDIUMWordPress Google XML Sitemaps plugin <= 4.1.22 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2023-23729MEDIUMWordPress Spectra – WordPress Gutenberg Blocks plugin <= 2.3.0 - Contributor+ reCAPTCHA Settings Change VulnerabilityEPSS 0.2%CVE-2025-66156MEDIUMWordPress Watcher for Elementor plugin <= 1.0.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24327MEDIUMMissing Authorization Check in SAP Strategic Enterprise Management (Balanced Scorecard in BSP Application)EPSS 0.2%CVE-2025-12075MEDIUMOrder Splitter for WooCommerce <= 5.3.5 - Missing Authorization to Authenticated (Subscriber+) Order Information ExposureEPSS 0.2%CVE-2026-39505MEDIUMWordPress Seriously Simple Podcasting plugin <= 3.14.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-44559MEDIUMOpen WebUI: Missing Access Check on Channel Members Endpoint for Standard ChannelsEPSS 0.2%