Falhas do tipo CWE-862

7.062 resultados
CVE-2025-66155MEDIUMWordPress Questionar for Elementor plugin <= 1.1.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-28433LOWMisskey lacks resource ownership validationEPSS 0.2%CVE-2026-34256HIGHMissing Authorization check in SAP ERP and SAP S/4 HANA (Private Cloud and On-Premise)EPSS 0.2%CVE-2025-24116MEDIUMAn access issue was addressed with additional sandbox restrictions. This issue is fixed in macOS Sequoia 15.3, macOS Sonoma 14.7.3, macOS VeEPSS 0.2%CVE-2025-10938MEDIUMUiPress lite <= 3.5.08 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information ExposureEPSS 0.2%CVE-2026-20193MEDIUMCisco Identity Services Engine Authentication Bypass VulnerabilityEPSS 0.2%CVE-2026-47742MEDIUMShopper: Missing authorization on Product admin Livewire sub-form componentsEPSS 0.2%CVE-2025-6341MEDIUMcode-projects School Fees Payment System cross-site request forgeryEPSS 0.2%CVE-2025-66157MEDIUMWordPress Sliper for Elementor plugin <= 1.0.10 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-44559MEDIUMOpen WebUI: Missing Access Check on Channel Members Endpoint for Standard ChannelsEPSS 0.2%CVE-2026-39505MEDIUMWordPress Seriously Simple Podcasting plugin <= 3.14.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-50244MEDIUMNaxclow IoT Platform Missing AuthorizationEPSS 0.2%CVE-2025-12075MEDIUMOrder Splitter for WooCommerce <= 5.3.5 - Missing Authorization to Authenticated (Subscriber+) Order Information ExposureEPSS 0.2%CVE-2025-26920MEDIUMWordPress Customify theme <= 0.4.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-66072MEDIUMWordPress UsersWP plugin <= 1.2.47 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-66156MEDIUMWordPress Watcher for Elementor plugin <= 1.0.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-14446MEDIUMPopup Builder <= 1.1.37 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Settings ResetEPSS 0.2%CVE-2025-66159MEDIUMWordPress Walker for Elementor plugin <= 1.1.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-8595MEDIUMZakra <= 4.1.5 - Missing Authorization to Subscriber+ Demo ImportEPSS 0.2%CVE-2025-66060MEDIUMWordPress Seriously Simple Podcasting plugin <= 3.13.0 - Broken Access Control vulnerabilityEPSS 0.2%