Falhas do tipo CWE-862
7.075 resultadosCVE-2026-33427LOWDiscourse Authorization Page Displays Unvalidated Redirect DomainEPSS 0.2%CVE-2025-64352LOWWordPress Essential Addons for Elementor plugin <= 6.2.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-46518HIGHOpenEMR: Stored XSS in prescription CSS/HTML print view via patient demographicsEPSS 0.2%CVE-2024-37496MEDIUMWordPress Metro Magazine theme <= 1.3.7 - Broken Access Control on Notice Dismissal vulnerabilityEPSS 0.2%CVE-2026-6709MEDIUMCoinbase Commerce for Contact Form 7 <= 1.1.2 - Missing Authorization to Authenticated (Subscriber+) API Key Modification via 'cccf7_api_key' ParameterEPSS 0.2%CVE-2025-66100MEDIUMWordPress RestroPress plugin <= 3.2.3.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-2504MEDIUMDealia – Request a quote <= 1.0.7 - Missing Authorization to Authenticated (Contributor+) Plugin Configuration ResetEPSS 0.2%CVE-2025-67589MEDIUMWordPress WooCommerce PDF Invoices & Packing Slips plugin <= 4.9.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-33005MEDIUMMissing Authorization check in SAP NetWeaver Application Server (ABAP and Java),SAP Web Dispatcher and SAP Content ServerEPSS 0.2%CVE-2024-31435MEDIUMWordPress Social Media Share Buttons & Social Sharing Icons plugin <= 2.8.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-23974MEDIUMWordPress Golo theme < 1.7.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-10173LOWShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution <= 4.8.3 - Insufficient Authorization to Authenticated (Editor+) Settings UpdateEPSS 0.2%CVE-2025-12809MEDIUMdokan pro <= 4.1.3 - Missing Authorization to Unauthenticated Sensitive Information ExposureEPSS 0.2%CVE-2026-25408MEDIUMWordPress Broken Link Notifier plugin <= 1.3.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-48334MEDIUMWordPress Woo Slider Pro <= 1.12 - Arbitrary Content Deletion VulnerabilityEPSS 0.2%CVE-2025-58198MEDIUMWordPress Xpro Theme Builder Plugin <= 1.2.9 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-5692MEDIUMLead Form Data Collection to CRM <= 3.1 - Missing Authorization to Authenticated (Subscriber+) Many ActionsEPSS 0.2%CVE-2026-44751HIGHMissing Authorization check in Application Server ABAP of SAP NetWeaver and ABAP PlatformEPSS 0.2%CVE-2026-45371HIGHSiYuan: SiYuan publish-mode Reader can mutate Conf and SQL index via 8 ungated APIsEPSS 0.2%CVE-2025-53571MEDIUMWordPress HAPPY plugin <= 1.0.6 - Broken Access Control vulnerabilityEPSS 0.2%