Falhas do tipo CWE-862
6.842 resultadosCVE-2022-43482MEDIUMWordPress Appointment Booking Calendar plugin <= 1.3.69 - Missing Authorization vulnerabilityEPSS 0.5%CVE-2023-32519MEDIUMWordPress WCP Contact Form plugin <= 3.1.0 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-31366HIGHWordPress Post Type Builder (PTB) plugin <= 2.0.8 - Auth. Arbitrary Post/Page Creation vulnerabilityEPSS 0.5%CVE-2024-26138MEDIUMLicense information is public, exposing instance id and license holder detailsEPSS 0.5%CVE-2023-36607—CVE-2023-36607EPSS 0.5%CVE-2026-4807MEDIUMAppointment Booking Calendar <= 1.6.10.6 - Unauthenticated Arbitrary Appointment View, Modification and DeletionEPSS 0.5%CVE-2026-12472MEDIUMKirki <= 6.0.11 - Missing Authorization to Unauthenticated Arbitrary Email Content Injection (Mail Relay / Phishing) via 'emailBody' and 'emailSubject' ParametersEPSS 0.5%CVE-2022-42903LOWZoho ManageEngine SupportCenter Plus through 11024 allows low-privileged users to view the organization users list.EPSS 0.5%CVE-2023-30873MEDIUMWordPress WP Docs plugin <= 1.9.8 - Broken Access ControlEPSS 0.5%CVE-2024-3546MEDIUMWordPress Backup & Migration <= 1.4.8 - Missing Authorization to Directory TraversalEPSS 0.5%CVE-2024-1381MEDIUMPage Builder Sandwich – Front End WordPress Page Builder Plugin <= 5.1.0 - Sensitive Information ExposureEPSS 0.5%CVE-2022-41807MEDIUMMissing authorization vulnerability exists in Kyocera Document Solutions MFPs and printers, which may allow a network-adjacent attacker to aEPSS 0.5%CVE-2024-11443HIGHde:branding <= 1.0.2 - Authenticated (Subscriber+) Arbitrary Options UpdateEPSS 0.5%CVE-2026-26268HIGHCursor sandbox escape via Git hooksEPSS 0.5%CVE-2023-25457MEDIUMWordPress Slider Carousel – Responsive Image Slider plugin <=1.5.1 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-0617MEDIUMCategory Discount Woocommerce <= 4.12 - Missing Authorization via wpcd_save_discount()EPSS 0.5%CVE-2026-0488CRITICALCode Injection vulnerability in SAP CRM and SAP S/4HANA (Scripting Editor)EPSS 0.5%CVE-2023-28689MEDIUMWordPress JS Job Manager plugin <= 2.0.0 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2026-31242CRITICALThe mem0 v1.0.0 server lacks authentication and authorization controls for its memory reset functionality accessible via the DELETE /memorieEPSS 0.5%CVE-2024-4660MEDIUMMissing Authorization in GitLabEPSS 0.5%