Falhas do tipo CWE-284
4.429 resultadosCVE-2026-34456CRITICALReviactyl: OAuth account takeover via auto-linkingEPSS 0.5%CVE-2023-25159LOWNextcloud Server previews are accessible without a watermarkEPSS 0.5%CVE-2026-2861MEDIUMFoswiki Changes/Viewfile/Oops information disclosureEPSS 0.5%CVE-2022-39835MEDIUMAn issue was discovered in Gajim through 1.4.7. The vulnerability allows attackers, via crafted XML stanzas, to correct messages that were nEPSS 0.5%CVE-2025-9475MEDIUMSourceCodester Human Resource Information System editemployee_process.php unrestricted uploadEPSS 0.5%CVE-2024-21110HIGHVulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are PrioEPSS 0.5%CVE-2023-43848HIGHIncorrect access control in the firewall management function of web interface in Aten PE6208 2.3.228 and 2.4.232 allows remote authenticatedEPSS 0.5%CVE-2024-21115HIGHVulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are PrioEPSS 0.5%CVE-2025-9397MEDIUMgivanz Vvveb media.php unrestricted uploadEPSS 0.5%CVE-2025-25615MEDIUMUnifiedtransform 2.0 is vulnerable to Incorrect Access Control which allows viewing attendance list for all class sections.EPSS 0.5%CVE-2024-0032MEDIUMIn multiple locations, there is a possible way to request access to directories that should be hidden due to improper input validation. ThisEPSS 0.5%CVE-2025-3255MEDIUMxujiangfei admintwo home access controlEPSS 0.5%CVE-2025-11908MEDIUMShenzhen Ruiming Technology Streamax Crocus FileDir.do uploadFile unrestricted uploadEPSS 0.5%CVE-2023-38298HIGHVarious software builds for the following TCL devices (30Z, A3X, 20XE, 10L) leak the device IMEI to a system property that can be accessed bEPSS 0.5%CVE-2022-41135MEDIUMWordPress Modula plugin <= 2.6.9 - Unauth. Plugin Settings Change vulnerabilityEPSS 0.5%CVE-2026-35326HIGHVulnerability in the Oracle WebCenter Content product of Oracle Fusion Middleware (component: Content Server). Supported versions that are EPSS 0.5%CVE-2026-46875CRITICALVulnerability in the Oracle Enterprise Manager Base Platform product of Oracle Enterprise Manager (component: Deployment Library). SupporteEPSS 0.5%CVE-2026-46938HIGHVulnerability in the Oracle Cost Management product of Oracle E-Business Suite (component: Cost Planning). Supported versions that are affeEPSS 0.5%CVE-2026-46769HIGHVulnerability in the Oracle Application Development Framework (ADF) product of Oracle Fusion Middleware (component: ADF Shared Components). EPSS 0.5%CVE-2026-46896CRITICALVulnerability in the Oracle Enterprise Command Center Framework product of Oracle E-Business Suite (component: Core). Supported versions thEPSS 0.5%