Falhas do tipo CWE-862
6.845 resultadosCVE-2023-51362MEDIUMWordPress myStickyElements plugin <= 2.1.3 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2022-41698MEDIUMWordPress If Menu – Visibility control for Menus plugin <= 0.16.3 - Broken Access ControlEPSS 0.5%CVE-2024-54271MEDIUMWordPress WPCargo Track & Trace plugin <= 8.0.2 - Settings Change vulnerabilityEPSS 0.5%CVE-2023-50887MEDIUMWordPress User Feedback plugin <= 1.0.10 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-37209MEDIUMWordPress User Rights Access Manager plugin <= 1.1.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-54311MEDIUMWordPress Mark New Posts plugin <= 7.5.1 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-54310MEDIUMWordPress Gou Manage My Account Menu plugin <= 1.0.1.8 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-44149MEDIUMWordPress Brands for WooCommerce plugin <= 3.8.2.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-44142MEDIUMWordPress Inactive Logout plugin <= 3.2.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-27309MEDIUMA vulnerability has been identified in RUGGEDCOM CROSSBOW (All versions < V5.2). The client query handler of the affected application fails EPSS 0.5%CVE-2025-13313CRITICALCRM Memberships <= 2.6 - Missing Authorization to Privilege Escalation via Unauthenticated Password Reset in 'ntzcrm_changepassword' AJAX EndpointEPSS 0.5%CVE-2023-48750MEDIUMWordPress Void Elementor Post Grid Addon for Elementor Page builder plugin <= 2.1.10 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-49832MEDIUMWordPress Site Reviews plugin <= 6.10.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-50899MEDIUMWordPress Product Catalog Enquiry for WooCommerce by MultiVendorX plugin <= 5.0.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-44147MEDIUMWordPress Comment Blacklist Updater plugin <= 1.1.0 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-51357MEDIUMWordPress Track Google Analytics 4, Facebook Pixel & Conversions API via Google Tag Manager for WooCommerce plugin <= 6.5.0 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-1095MEDIUMBuild & Control Block Patterns – Boost up Gutenberg Editor <= 1.3.5.4 - Missing AuthorizationEPSS 0.5%CVE-2024-33944MEDIUMWordPress WooCommerce AWeber Newsletter Subscription plugin <= 4.0.2 - Unauthenticated Access Token Change/Reset vulnerabilityEPSS 0.5%CVE-2023-46352HIGHIn the module "Pixel Plus: Events + CAPI + Pixel Catalog for Facebook Module" (facebookconversiontrackingplus) up to version 2.4.9 from SmarEPSS 0.5%CVE-2024-2107MEDIUMBlossom Spa <= 1.3.3 - Sensitive Information ExposureEPSS 0.5%