Fallos del tipo CWE-266
939 resultadosCVE-2025-3569MEDIUMJamesZBL/code-projects db-hospital-drug ShiroConfig.java improper authorizationEPSS 0.4%CVE-2025-9687MEDIUMPortabilis i-Educar processamentoApi improper authorizationEPSS 0.4%CVE-2025-60195CRITICALWordPress Atarim plugin <= 4.2.1 - Privilege Escalation vulnerabilityEPSS 0.4%CVE-2017-12711—An Incorrect Privilege Assignment issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. A built-in user account has bEPSS 0.4%CVE-2026-4990MEDIUMchatwoot Signup Endpoint login improper authorizationEPSS 0.4%CVE-2025-5423MEDIUMjuzaweb CMS General Setting Page general access controlEPSS 0.4%CVE-2025-5429MEDIUMjuzaweb CMS Plugins Page install access controlEPSS 0.4%CVE-2025-5421MEDIUMjuzaweb CMS Plugin Editor Page editor access controlEPSS 0.4%CVE-2025-5428MEDIUMjuzaweb CMS Error Logs Page log-viewer access controlEPSS 0.4%CVE-2025-5424MEDIUMjuzaweb CMS Media Page media access controlEPSS 0.4%CVE-2025-5426MEDIUMjuzaweb CMS Menu Page menus access controlEPSS 0.4%CVE-2025-5427MEDIUMjuzaweb CMS Permalinks Page permalinks access controlEPSS 0.4%CVE-2024-13251HIGHRegistration role - Critical - Access bypass - SA-CONTRIB-2024-015EPSS 0.3%CVE-2025-5522MEDIUMjack0240 魏 bskms 蓝天幼儿园管理系统 User Creation addUser improper authorizationEPSS 0.3%CVE-2026-22315HIGHIncorrect Privilege Assignment vulnerability in Mesalvo Meona Client Launcher Component, Mesalvo Meona Server Component enables the export EPSS 0.3%CVE-2025-23974HIGHWordPress One-Login plugin <= 1.4 - Privilege Escalation VulnerabilityEPSS 0.3%CVE-2025-10608MEDIUMPortabilis i-Educar enrollment-history access controlEPSS 0.3%CVE-2025-9609MEDIUMPortabilis i-Educar consulta improper authorizationEPSS 0.3%CVE-2025-11048MEDIUMPortabilis i-Educar consulta-dispensas improper authorizationEPSS 0.3%CVE-2025-11047MEDIUMPortabilis i-Educar aluno improper authorizationEPSS 0.3%