Falhas do tipo CWE-862
7.077 resultadosCVE-2026-27409MEDIUMWordPress Webba Booking plugin <= 6.4.13 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-3226MEDIUMLearnPress <= 4.3.2.8 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Email Notification TriggeringEPSS 0.2%CVE-2026-56742MEDIUMCilium: Namespaced HTTPRoutes can redirect traffic to other namespacesEPSS 0.2%CVE-2026-48973MEDIUMWordPress SVG Support plugin <= 2.5.14 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-42918MEDIUMMissing Authorization check in SAP NetWeaver Application Server for ABAP (Background Processing)EPSS 0.2%CVE-2026-59709MEDIUMGhostfolio - Unauthorized Portfolio Holding Tag Modification via Missing Permission CheckEPSS 0.2%CVE-2025-62970MEDIUMWordPress Link Whisper Free plugin <= 0.9.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-6372HIGHWordPress Accept Cryptocurrencies with Plisio plugin <= 2.0.5 - Payment Bypass vulnerabilityEPSS 0.2%CVE-2025-36361MEDIUMIBM App Connect Enterprise runtime is vulnerable to a lack of authorization on windows environments using IWAEPSS 0.2%CVE-2026-55476MEDIUMSnipe-IT: Unauthorized Asset Request Cancellation via Unguarded cancel_by_admin ParameterEPSS 0.2%CVE-2026-58373MEDIUMCVAT < 2.69.0 - Missing Authorization on Quality Reports parent_id Filter Leaks Cross-Organization Report ExistenceEPSS 0.2%CVE-2026-11852MEDIUMDebusine is an integrated solution to build, distribute and maintain a Debian-based distribution. Files managed by debusine are organized inEPSS 0.2%CVE-2026-32413MEDIUMWordPress Permalink Manager Lite plugin < 2.5.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-35630HIGHOpenClaw < 2026.5.18 - QQBot Missing Approver Identity Enforcement in Native Approval ButtonsEPSS 0.2%CVE-2026-32332MEDIUMWordPress Easy Form plugin <= 2.7.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-62980MEDIUMWordPress Persian Admnin Fonts plugin <= 4.1.03 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-62966MEDIUMWordPress GoCache plugin <= 1.3.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32395MEDIUMWordPress Xpro Addons For Beaver Builder – Lite plugin <= 1.5.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-68508MEDIUMWordPress Brave plugin <= 0.8.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-40581HIGHChurchCRM: Cross-Site Request Forgery (CSRF) in SelectDelete.php Leading to Permanent Data DeletionEPSS 0.2%