Fallos del tipo CWE-284

4445 resultados
CVE-2023-43814LOWExposure of poll options and votes to unauthorized users in DiscourseEPSS 0.3%CVE-2019-12670MEDIUMCisco IOS XE Software IOx Guest Shell Namespace Protection VulnerabilityEPSS 0.3%CVE-2025-15423MEDIUMEmpireSoft EmpireCMS connect.php CheckSaveTranFiletype unrestricted uploadEPSS 0.3%CVE-2024-24776LOW Incorrect Authorization leads to Channel Member Count LeakEPSS 0.3%CVE-2026-5330MEDIUMSourceCodester/mayuri_k Best Courier Management System User Delete ajax.php access controlEPSS 0.3%CVE-2025-0227MEDIUMTsinghua Unigroup Electronic Archives System downLoad.html information disclosureEPSS 0.3%CVE-2026-35231HIGHVulnerability in the Oracle Financial Services Transaction Filtering product of Oracle Financial Services Applications (component: User InteEPSS 0.3%CVE-2024-23488LOWFiles of archived channels accessible with the “Allow users to view archived channels” option disabledEPSS 0.3%CVE-2025-10480MEDIUMSourceCodester Online Student File Management System save_file.php unrestricted uploadEPSS 0.3%CVE-2020-2025HIGHKata Containers - Cloud Hypervisor guests persist filesystem changes to the underlying host image fileEPSS 0.3%CVE-2023-28443MEDIUMdirectus vulnerable to Insertion of Sensitive Information into Log FileEPSS 0.3%CVE-2026-58286HIGHMicrosoft Edge (Chromium-based) Spoofing VulnerabilityEPSS 0.3%CVE-2026-43713MEDIUMA permissions issue was addressed with additional restrictions. This issue is fixed in Safari 26.5.2, iOS 26.5.2 and iPadOS 26.5.2, macOS TaEPSS 0.3%CVE-2024-39772LOWSilent Desktop Screenshot CaptureEPSS 0.3%CVE-2026-58282HIGHMicrosoft Edge (Chromium-based) Spoofing VulnerabilityEPSS 0.3%CVE-2024-37317MEDIUMNextcloud Notes app can be tricked into using a received share created before the user logged inEPSS 0.3%CVE-2026-50886CRITICALIncorrect access control in the webhook management component of Project Firefly III v6.5.9 allows attackers to scan internal resources via aEPSS 0.3%CVE-2025-7412MEDIUMcode-projects Library System profile.php unrestricted uploadEPSS 0.3%CVE-2026-30926HIGHSiYuan Note publish service authorization bypass allows low-privilege users to modify notebook contentEPSS 0.3%CVE-2025-7413MEDIUMcode-projects Library System profile.php unrestricted uploadEPSS 0.3%