Falhas do tipo CWE-862

7.075 resultados
CVE-2026-24577MEDIUMWordPress Pie Register plugin <= 3.8.4.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39562MEDIUMWordPress Client Invoicing by Sprout Invoices plugin <= 20.8.10 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39622MEDIUMWordPress Education Base theme <= 3.0.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2023-45246HIGHSensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect CEPSS 0.2%CVE-2026-24945MEDIUMWordPress Ultimate Addons for Contact Form 7 plugin <= 3.5.34 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32376MEDIUMWordPress Kalon theme <= 1.2.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2023-45247HIGHSensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect CEPSS 0.2%CVE-2026-25415MEDIUMWordPress WPBookit Pro plugin <= 1.6.18 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12180MEDIUMQi Blocks <= 1.4.3 - Missing Authorization to Authenticated (Contributor+) Plugin Settings UpdateEPSS 0.2%CVE-2025-62081MEDIUMWordPress Live Shopping & Shoppable Videos For WooCommerce plugin <= 2.2.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32382MEDIUMWordPress Digital Download theme <= 1.1.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32346MEDIUMWordPress Travel Agency theme <= 1.5.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-22445MEDIUMWordPress Apimo Connector plugin <= 2.6.5.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32341MEDIUMWordPress Benevolent theme <= 1.3.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-43583MEDIUMOpenClaw 2026.4.10 < 2026.4.14 - Loss of Group Tool-Policy Context in Delivery Queue RecoveryEPSS 0.2%CVE-2026-39509MEDIUMWordPress Directorist plugin <= 8.5.10 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24999MEDIUMWordPress Alma plugin <= 5.16.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-66076MEDIUMWordPress Woostify Sites Library plugin <= 1.6.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-36995MEDIUMLow-privileged user could create experimental itemsEPSS 0.2%CVE-2025-68593MEDIUMWordPress WP Adminify plugin <= 4.0.6.1 - Broken Access Control vulnerabilityEPSS 0.2%