Fallos del tipo CWE-285
1297 resultadosCVE-2026-47744CRITICALShopper: Authorization bypass and RBAC privilege escalation in team settingsEPSS 0.3%CVE-2026-44208MEDIUMFrappe: IDOR in `submit_discussion()`EPSS 0.3%CVE-2025-10759MEDIUMWebkul QloApps CSRF Token authorizationEPSS 0.3%CVE-2026-2892HIGHOtter Blocks <= 3.1.4 - Improper Authorization to Unauthenticated Purchase Verification Bypass via Forged CookieEPSS 0.3%CVE-2026-1193MEDIUMMineAdmin View view improper authorizationEPSS 0.3%CVE-2025-6702MEDIUMlinlinjava litemall post improper authorizationEPSS 0.3%CVE-2023-39398CRITICALParameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be reaEPSS 0.3%CVE-2023-39399CRITICALParameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be reaEPSS 0.3%CVE-2023-52539HIGHPermission verification vulnerability in the Settings module.
Impact: Successful exploitation of this vulnerability may affect service confiEPSS 0.3%CVE-2023-39403CRITICALParameter verification vulnerability in the installd module. Successful exploitation of this vulnerability may cause sandbox files to be reaEPSS 0.3%CVE-2026-33954MEDIUMLinkAce discloses private notesto unauthorized authenticated users via the web link detail pageEPSS 0.3%CVE-2025-11321MEDIUMzhuimengshaonian wisdom-education WrongBookController.java authorizationEPSS 0.3%CVE-2025-14206MEDIUMSourceCodester Online Student Clearance System Fee Table delete-fee.php improper authorizationEPSS 0.3%CVE-2025-29778MEDIUMKyverno ignores subjectRegExp and IssuerRegExpEPSS 0.3%CVE-2020-8919LOWInformation leakage in GerritEPSS 0.3%CVE-2018-1113MEDIUMsetup before version 2.11.4-1.fc28 in Fedora and Red Hat Enterprise Linux added /sbin/nologin and /usr/sbin/nologin to /etc/shells. This vioEPSS 0.3%CVE-2025-53512MEDIUMSensitive log retrieval in JujuEPSS 0.3%CVE-2026-3263MEDIUMgo2ismail Asp.Net-Core-Inventory-Order-Management-System Security API improper authorizationEPSS 0.3%CVE-2026-7702MEDIUMtoeverything AFFiNE Public Markdown Preview Endpoint :docId allowDocPreview authorizationEPSS 0.3%CVE-2024-40783HIGHThe issue was addressed with improved restriction of data container access. This issue is fixed in macOS Monterey 12.7.6, macOS Sonoma 14.6,EPSS 0.3%