Falhas do tipo CWE-284
4.373 resultadosCVE-2025-21587HIGHVulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE (component: JSSE). EPSS 0.7%CVE-2021-44460HIGHImproper access control in Odoo Community 13.0 and earlier and Odoo Enterprise 13.0 and earlier allows users with deactivated accounts to acEPSS 0.7%CVE-2022-41652MEDIUMWordPress Quiz And Survey Master plugin <= 7.3.10 - Bypass vulnerabilityEPSS 0.7%CVE-2025-2216MEDIUMzzskzy Warehouse Refinement Management System SaveCrash.ashx UploadCrash unrestricted uploadEPSS 0.7%CVE-2024-37147MEDIUMGLPI allows Authenticated File Upload to Restricted TicketsEPSS 0.7%CVE-2026-1194MEDIUMMineAdmin Swagger information disclosureEPSS 0.7%CVE-2020-8122—A missing check in Nextcloud Server 14.0.3 could give recipient the possibility to extend the expiration date of a share they received.EPSS 0.7%CVE-2022-0170MEDIUMImproper Access Control in chocobozzz/peertubeEPSS 0.7%CVE-2025-0582MEDIUMitsourcecode Farm Management System add-pig.php unrestricted uploadEPSS 0.7%CVE-2025-63223CRITICALThe Axel Technology StreamerMAX MK II devices (firmware versions 0.8.5 to 1.0.3) are vulnerable to Broken Access Control due to missing authEPSS 0.7%CVE-2024-22206CRITICAL@clerk/nextjs auth() and getAuth() methods vulnerable to insecure direct object reference (IDOR)EPSS 0.7%CVE-2024-22234HIGHCVE-2024-22234: Broken Access Control in Spring Security With Direct Use of isFullyAuthenticatedEPSS 0.7%CVE-2025-30460HIGHA permissions issue was addressed by removing vulnerable code and adding additional checks. This issue is fixed in macOS Sequoia 15.4, macOSEPSS 0.7%CVE-2022-1658MEDIUMJupiter Theme <= 6.10.1 - Authenticated Arbitrary Plugin DeletionEPSS 0.7%CVE-2024-1823MEDIUMCodeAstro Simple Voting System Backend users.php access controlEPSS 0.7%CVE-2019-25157MEDIUMEthex Contracts Monthly Jackpot EthexJackpot.sol access controlEPSS 0.7%CVE-2024-1294MEDIUMSunshine Photo Cart: Free Client Galleries for Photographers <= 3.0.24 - Unauthenticated Sensitive Information Exposure via InvoiceEPSS 0.7%CVE-2023-2902MEDIUMNFine Rapid Development Platform access controlEPSS 0.7%CVE-2021-1477MEDIUMCisco Firepower Management Center Software Policy VulnerabilityEPSS 0.7%CVE-2022-46354MEDIUMA vulnerability has been identified in SCALANCE X204RNA (HSR) (All versions < V3.2.7), SCALANCE X204RNA (PRP) (All versions < V3.2.7), SCALAEPSS 0.7%