Falhas do tipo CWE-862
7.075 resultadosCVE-2023-45244HIGHSensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect CEPSS 0.2%CVE-2026-32363MEDIUMWordPress WPLifeCycle plugin <= 3.3.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-62081MEDIUMWordPress Live Shopping & Shoppable Videos For WooCommerce plugin <= 2.2.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39509MEDIUMWordPress Directorist plugin <= 8.5.10 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-11587MEDIUMCall Now Button <= 1.5.3 - Missing Authorization to Authenticated (Subscriber+) Limited Plugin Settings UpdateEPSS 0.2%CVE-2026-39588MEDIUMWordPress NM Gift Registry and Wishlist Lite plugin <= 5.13 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-69010MEDIUMWordPress Themebeez Toolkit plugin <= 1.3.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-22445MEDIUMWordPress Apimo Connector plugin <= 2.6.5.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24556MEDIUMWordPress ElementCamp plugin <= 2.3.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32350MEDIUMWordPress Chocolate House theme <= 1.1.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-49349MEDIUMWordPress Reuters Direct plugin <= 3.0.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32425MEDIUMWordPress Payment Gateway Pix For GiveWP plugin <= 2.2.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12498MEDIUMEventPrime – Events Calendar, Bookings and Tickets <= 4.2.0.0 - Missing Authorization to Authenticated (Subscriber+) Booking Note CreationEPSS 0.2%CVE-2026-43583MEDIUMOpenClaw 2026.4.10 < 2026.4.14 - Loss of Group Tool-Policy Context in Delivery Queue RecoveryEPSS 0.2%CVE-2023-45247HIGHSensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect CEPSS 0.2%CVE-2025-68593MEDIUMWordPress WP Adminify plugin <= 4.0.6.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-14450MEDIUMWallet System for WooCommerce <= 2.7.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Wallet Balance ManipulationEPSS 0.2%CVE-2025-64636MEDIUMWordPress Donation Thermometer plugin <= 2.2.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12778MEDIUMUltimate Member Widgets for Elementor <= 2.3 - Missing Authorization to Unauthenticated Information ExposureEPSS 0.2%CVE-2026-57649MEDIUMWordPress Shoppable Images Lite plugin <= 1.3 - Broken Access Control vulnerabilityEPSS 0.2%