Falhas do tipo CWE-288
584 resultadosCVE-2020-15633HIGHThis vulnerability allows network-adjacent attackers to bypass authentication on affected installations of D-Link DIR-867, DIR-878, and DIR-EPSS 2.8%CVE-2020-27865HIGHThis vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DAP-1860 firmware versionEPSS 2.5%CVE-2020-14485—OpenClinic GA versions 5.09.02 and 5.89.05b may allow an attacker to bypass client-side access controls or use a crafted request to initiateEPSS 2.5%CVE-2019-13526—Datalogic AV7000 Linear barcode scanner all versions prior to 4.6.0.0 is vulnerable to authentication bypass, which may allow an attacker toEPSS 2.4%CVE-2020-6091CRITICALAn exploitable authentication bypass vulnerability exists in the ESPON Web Control functionality of Epson EB-1470Ui MAIN: 98009273ESWWV107 MEPSS 2.3%CVE-2019-5165HIGHAn exploitable authentication bypass vulnerability exists in the hostname processing of the Moxa AWK-3131A firmware version 1.13. A speciallEPSS 2.2%CVE-2016-9497—Hughes high-performance broadband satellite modems, models HN7740S DW7000 HN7000S/SM, is vulnerable to an authentication bypass using an alternate path or channelEPSS 2.2%CVE-2025-27129CRITICALAn authentication bypass vulnerability exists in the HTTP authentication functionality of Tenda AC6 V5.0 V02.03.01.110. A specially crafted EPSS 2.0%CVE-2024-28200CRITICALN-central Authentication BypassEPSS 1.9%CVE-2024-9933CRITICALWatchTowerHQ <= 3.10.1 - Authentication Bypass to Administrator due to Missing Empty Value CheckEPSS 1.9%CVE-2023-2834CRITICALBookIt <= 2.3.7 - Authentication BypassEPSS 1.9%CVE-2025-22462CRITICALAn authentication bypass in Ivanti Neurons for ITSM (on-prem only) before 2023.4, 2024.2 and 2024.3 with the May 2025 Security Patch allows EPSS 1.9%CVE-2022-24047MEDIUMThis vulnerability allows remote attackers to bypass authentication on affected installations of BMC Track-It! 20.21.01.102. Authentication EPSS 1.9%CVE-2024-52475CRITICALWordPress Wawp plugin < 3.0.18 - Account Takeover vulnerabilityEPSS 1.8%CVE-2022-1681HIGHAuthentication Bypass Using an Alternate Path or Channel in requarks/wikiEPSS 1.8%CVE-2025-0364CRITICALBigAntSoft BigAnt Server Account Registration Bypass to File Upload RCEEPSS 1.8%CVE-2020-4050LOWset-screen-option filter misuse by plugins leading to privilege escalation in WordPressEPSS 1.7%CVE-2019-5473—An authentication issue was discovered in GitLab that allowed a bypass of email verification. This was addressed in GitLab 12.1.2 and 12.0.4EPSS 1.7%CVE-2024-47009HIGHPath Traversal in Ivanti Avalanche before version 6.4.5 allows a remote unauthenticated attacker to bypass authentication.EPSS 1.7%CVE-2019-18250—In all versions of ABB Power Generation Information Manager (PGIM) and Plant Connect, the affected product is vulnerable to authentication bEPSS 1.7%