Falhas do tipo CWE-284
4.445 resultadosCVE-2025-10085MEDIUMSourceCodester Pet Grooming Management Software manage_website.php unrestricted uploadEPSS 0.3%CVE-2024-5470LOWImproper Access Control in GitLabEPSS 0.3%CVE-2025-23329HIGHNVIDIA Triton Inference Server for Windows and Linux contains a vulnerability where an attacker could cause memory corruption by identifyingEPSS 0.3%CVE-2025-10615MEDIUMitsourcecode E-Commerce Website products.php unrestricted uploadEPSS 0.3%CVE-2026-30855HIGHWeKnora: Broken Access Control in Tenant ManagementEPSS 0.3%CVE-2025-61114HIGH2nd Line Android App version v1.2.92 and before (package name com.mysecondline.app), developed by AutoBizLine, Inc., contains an improper acEPSS 0.3%CVE-2025-61116HIGHAdForest - Classified Android App version 4.0.12 (package name scriptsbundle.adforest), developed by Muhammad Jawad Arshad, contains an imprEPSS 0.3%CVE-2024-37567CRITICALInfoblox NIOS through 8.6.4 has Improper Access Control for Grids.EPSS 0.3%CVE-2024-9503MEDIUMMaintenance & Coming Soon Redirect Animation <= 2.1.3 - Missing Authorization to Settings UpdateEPSS 0.3%CVE-2020-35546CRITICALLexmark MX6500 LW75.JD.P296 and previous devices have Incorrect Access Control via the access control settings.EPSS 0.3%CVE-2025-11281LOWFrappe LMS Unpublished Course courses access controlEPSS 0.3%CVE-2023-1453MEDIUMWatchdog Anti-Virus IoControlCode wsdk-driver.sys 0x80002008 access controlEPSS 0.3%CVE-2025-61117HIGHSenza: Keto & Fasting Android App version 2.10.15 (package name com.gl.senza), developed by Paul Itoi, contains an improper access control vEPSS 0.3%CVE-2025-61234HIGHIncorrect access control on Dataphone A920 v2025.07.161103 exposes a service on port 8888 by default on the local network without authenticaEPSS 0.3%CVE-2026-30140HIGHAn incorrect access control vulnerability exists in Tenda W15E V02.03.01.26_cn. An unauthenticated attacker can access the /cgi-bin/DownloadEPSS 0.3%CVE-2025-46331MEDIUMOpenFGA Authorization BypassEPSS 0.3%CVE-2025-12297MEDIUMatjiu pybbs UserApiController.java information disclosureEPSS 0.3%CVE-2025-47179MEDIUMConfiguration Manager Elevation of Privilege VulnerabilityEPSS 0.3%CVE-2025-1259HIGHOn affected platforms running Arista EOS with OpenConfig configured, a gNOI request can be run when it should have been rejected.EPSS 0.3%CVE-2026-50891HIGHIncorrect access control in the /admin/api/config component of Filestash v0.4.0 allows attackers to escalate privileges via sending a crafteEPSS 0.3%