Falhas do tipo CWE-862
7.075 resultadosCVE-2025-3997MEDIUMdazhouda lecms Personal Information Page index.php cross-site request forgeryEPSS 0.2%CVE-2025-5919MEDIUMAppointment Booking and Scheduling Calendar Plugin – WP Timetics <= 1.0.36 - Missing Authorization to Unauthenticated Booking Details View And ModificationEPSS 0.2%CVE-2026-53844MEDIUMOpenClaw < 2026.4.29 - Session Visibility Check Bypass in Shared Memory SearchEPSS 0.2%CVE-2025-64294MEDIUMWordPress WP Snow Effect plugin <= 1.1.19 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39595MEDIUMWordPress W3 Total Cache plugin <= 2.9.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-57731MEDIUMWordPress Flatsome theme <= 3.20.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-62348MEDIUMTDengine: KILL SSMIGRATE missing authorization lets low-privilege users interrupt shared-storage migrationsEPSS 0.2%CVE-2025-59567MEDIUMWordPress Coupon Affiliates Plugin <= 6.8.0 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-24313MEDIUMMissing Authorization check in SAP Solution Tools Plug-In (ST-PI)EPSS 0.2%CVE-2026-24581MEDIUMWordPress Points and Rewards for WooCommerce plugin <= 2.9.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24322HIGHMissing Authorization check in SAP Solution Tools Plug-In (ST-PI)EPSS 0.2%CVE-2026-10815MEDIUMLakshayD02 Hostel-Management-System-PHP Admin Dashboard index.php authorizationEPSS 0.2%CVE-2025-68585LOWWordPress WP Document Revisions plugin <= 3.7.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25388MEDIUMWordPress Ads Pro plugin <= 5.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-50032MEDIUMWordPress Paytiko for WooCommerce plugin <= 1.3.21 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-12411HIGHBroken Access Control in Canonical LXD DevLXD APIEPSS 0.2%CVE-2026-33708MEDIUMChamilo LMS has REST API PII Exposure via get_user_info_from_usernameEPSS 0.2%CVE-2025-10583LOWWP Fastest Cache Premium <= 1.7.4 - Missing Authorization to Authenticated (Subscriber+) Blind Server-Side Request ForgeryEPSS 0.2%CVE-2025-50039MEDIUMWordPress VG WORT METIS plugin <= 2.0.1 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2023-48676LOWSensitive information disclosure and manipulation due to missing authorization. The following products are affected: Acronis Cyber Protect CEPSS 0.2%