Falhas do tipo CWE-284
4.393 resultadosCVE-2024-7525CRITICALIt was possible for a web extension with minimal permissions to create a `StreamFilter` which could be used to read and modify the response EPSS 0.6%CVE-2022-3030MEDIUMAn improper access control issue in GitLab CE/EE affecting all versions starting before 15.1.6, all versions from 15.2 before 15.2.4, all veEPSS 0.6%CVE-2024-21666MEDIUMPimcore Customer Data Framework Improper Access Control allows unprivileged user to access customers duplicates listEPSS 0.6%CVE-2021-23178HIGHImproper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows attackers to validate online paymentsEPSS 0.6%CVE-2022-41235MEDIUMJenkins WildFly Deployer Plugin 1.0.2 and earlier implements functionality that allows agent processes to read arbitrary files on the JenkinEPSS 0.6%CVE-2024-45135LOWAdobe Commerce | Improper Access Control (CWE-284)EPSS 0.6%CVE-2024-10393MEDIUMTutor LMS <= 2.7.6 - User Registration Setting Bypass to Unauthorized User RegistrationEPSS 0.6%CVE-2025-6161MEDIUMSourceCodester Simple Food Ordering System editproduct.php unrestricted uploadEPSS 0.6%CVE-2024-0551HIGHDownload and export of file via default user roleEPSS 0.6%CVE-2023-5353HIGHImproper Access Control in salesagility/suitecrmEPSS 0.6%CVE-2022-32848MEDIUMA logic issue was addressed with improved checks. This issue is fixed in macOS Big Sur 11.6.8, macOS Monterey 12.5. An app may be able to caEPSS 0.6%CVE-2025-2992MEDIUMTenda FH1202 Web Management Interface AdvSetWrlsafeset access controlEPSS 0.6%CVE-2023-5549LOWMoodle: insufficient capability checks when updating the parent of a course categoryEPSS 0.6%CVE-2014-125054MEDIUMkoroket RedditOnRails Vote access controlEPSS 0.6%CVE-2023-22473LOWPasscode bypass on Talk-Android appEPSS 0.6%CVE-2024-0899MEDIUMs2Member – Best Membership Plugin for All Kinds of Memberships, Content Restriction Paywalls & Member Access Subscriptions <= 230815 - Information ExposureEPSS 0.6%CVE-2024-20695MEDIUMSkype for Business Information Disclosure VulnerabilityEPSS 0.6%CVE-2023-27875HIGHIBM Aspera Faspex improper access controlsEPSS 0.6%CVE-2024-11122MEDIUM上海灵当信息科技有限公司 Lingdang CRM index.php unrestricted uploadEPSS 0.6%CVE-2024-2281MEDIUMboyiddha Automated-Mess-Management-System Setting index.php access controlEPSS 0.6%