Falhas do tipo CWE-269
1.779 resultadosCVE-2025-21199MEDIUMAzure Agent Installer for Backup and Site Recovery Elevation of Privilege VulnerabilityEPSS 0.4%CVE-2026-3629HIGHImport and export users and customers <= 1.29.7 - Privilege Escalation to Administrator via save_extra_user_profile_fieldsEPSS 0.4%CVE-2024-37107HIGHWordPress WishList Member X plugin < 3.26.7 - Authenticated Privilege Escalation vulnerabilityEPSS 0.4%CVE-2025-66428HIGHAn issue with WordPress directory names in WebPros WordPress Toolkit before 6.9.1 allows privilege escalation.EPSS 0.4%CVE-2024-39633HIGHWordPress PowerPack for Beaver Builder plugin <= 2.33.0 - Contributor+ Privilege Escalation vulnerabilityEPSS 0.4%CVE-2024-4988HIGHImproper permission control in com.transsion.videocallenhancerEPSS 0.4%CVE-2022-45988HIGHstarsoftcomm CooCare 5.304 allows local attackers to escalate privileges and execute arbitrary commands via a crafted file upload.EPSS 0.4%CVE-2024-31237HIGHWordPress s2Member plugin <= 240315 - Privilege Escalation vulnerabilityEPSS 0.4%CVE-2025-0177CRITICALJavo Core <= 3.0.0.080 - Unauthenticated Privilege Escalation in ajax_signupEPSS 0.4%CVE-2026-32181MEDIUMConnected User Experiences and Telemetry Service Denial of Service VulnerabilityEPSS 0.4%CVE-1999-0084HIGHCertain NFS servers allow users to use mknod to gain privileges by creating a writable kmem device and setting the UID to 0.EPSS 0.4%CVE-2025-55187CRITICALIn DriveLock 24.1.4 before 24.1.5, 24.2.5 before 24.2.6, and 25.1.2 before 25.1.4, attackers can gain elevated privileges.EPSS 0.4%CVE-2026-27198HIGHFormwork Improperly Manages Privileges During User CreationEPSS 0.4%CVE-2025-5931HIGHDokan Pro <= 4.0.5 - Authenticated (Vendor+) Privilege EscalationEPSS 0.4%CVE-2025-12882CRITICALClasifico Listing <= 2.0 - Unauthenticated Privilege EscalationEPSS 0.4%CVE-2024-42774HIGHAn Incorrect Access Control vulnerability was found in /admin/delete_room.php in Kashipara Hotel Management System v1.0, which allows an unaEPSS 0.4%CVE-2025-15027CRITICALJAY Login & Register <= 2.6.03 - Unauthenticated Privilege Escalation via jay_login_register_ajax_create_final_userEPSS 0.4%CVE-2024-23253HIGHA permissions issue was addressed with additional restrictions. This issue is fixed in macOS Sonoma 14.4. An app may be able to access a useEPSS 0.4%CVE-2024-47000HIGHService Users Deactivation not Working in ZitadelEPSS 0.4%CVE-2026-46895CRITICALVulnerability in the Oracle Enterprise Command Center Framework product of Oracle E-Business Suite (component: Core). Supported versions thEPSS 0.4%