Falhas do tipo CWE-862

6.845 resultados
CVE-2024-33956MEDIUMWordPress Custom WooCommerce Checkout Fields Editor plugin <= 1.3.0 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-10092MEDIUMDownload Monitor <= 5.0.12 - Missing Authorization to API Key ManipulationEPSS 0.4%CVE-2024-33912HIGHWordPress Academy LMS plugin <= 1.9.16 - Broken Access Control on Paid Courses vulnerabilityEPSS 0.4%CVE-2024-1763MEDIUMWp Social Login and Register Social Counter <= 3.0.0 - Missing Authorization to Unauthenticated Social Login/Share Status UpdateEPSS 0.4%CVE-2024-43314MEDIUMWordPress Asset CleanUp: Page Speed Booster plugin <= 1.3.9.3 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2025-23527MEDIUMWordPress WC Wallet plugin <= 2.2.0 - Arbitrary Content Deletion vulnerabilityEPSS 0.4%CVE-2024-43298MEDIUMWordPress Clone plugin <= 2.4.5 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-43297MEDIUMWordPress Clone plugin <= 2.4.5 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-33570MEDIUMWordPress MetForm plugin <= 3.8.3 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2025-24604MEDIUMWordPress VForm plugin <= 3.0.5 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2025-23778MEDIUMWordPress User Sync ActiveCampaign plugin <= 1.3.2 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2025-24571MEDIUMWordPress WP Fast Total Search plugin <= 1.78.258 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-45493CRITICALAn issue was discovered in MSA FieldServer Gateway 5.0.0 through 6.5.2 (Fixed in 7.0.0). The FieldServer Gateway has internal users, whose aEPSS 0.4%CVE-2022-42884MEDIUMWordPress WIP Custom Login Plugin <= 1.2.7 is vulnerable to Broken Access ControlEPSS 0.4%CVE-2025-48998HIGHDataease MYSQL JDBC File Reading VulnerabilityEPSS 0.4%CVE-2023-1262HIGHMissing MAC layer security in Wi-SUN Linux Border RouterEPSS 0.4%CVE-2023-49845MEDIUMWordPress Redirects plugin <= 1.2.1 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-45275MEDIUMWordPress Contact Form builder with drag & drop plugin <= 2.3.28 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-32143MEDIUMWordPress Podlove Podcast Publisher plugin <= 4.1.0 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-27190MEDIUMWordPress Download Media plugin <= 1.4.2 - Broken Access Control vulnerabilityEPSS 0.4%