Falhas do tipo CWE-862
6.852 resultadosCVE-2023-40331MEDIUMWordPress Accordion Slider plugin <= 1.9.6 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-40213MEDIUMWordPress Justified Gallery plugin <= 1.7.3 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-2619MEDIUMElementor Header & Footer Builder <= 1.6.26 - Authenticated (Author+) HTML InjectionEPSS 0.4%CVE-2024-4410MEDIUMIgnitionDeck Crowdfunding Platform <= 1.9.8 - Missing AuthorizationEPSS 0.4%CVE-2025-32226MEDIUMWordPress Display product variations dropdown on shop page plugin <= 1.1.3 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-9202MEDIUMEDC DataSetResolver policy filtering missingEPSS 0.4%CVE-2023-41132MEDIUMWordPress Category Slider for WooCommerce plugin <= 1.4.15 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-27460MEDIUMWordPress CP Contact Form with PayPal plugin <= 1.3.34 - Missing Authorization Leading To Feedback Submission vulnerabilityEPSS 0.4%CVE-2024-4163HIGHPrivilege Escalation on Skylab IIoT Gateway (IGX)EPSS 0.4%CVE-2025-22610MEDIUMCoolify Vulnerable to OAuth Secrets LeakEPSS 0.4%CVE-2024-43285MEDIUMWordPress Presto Player plugin <= 3.0.2 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2026-34369MEDIUMAVIdeo has Video Password Protection Bypass via API Endpoints Returning Full Playback Sources Without Password VerificationEPSS 0.4%CVE-2026-39397CRITICAL@delmaredigital/payload-puc is missing authorization on /api/puck/* CRUD endpoints allows unauthenticated access to Puck-registered collectionsEPSS 0.4%CVE-2025-70983CRITICALIncorrect access control in the authRoutes function of SpringBlade v4.5.0 allows attackers with low-level privileges to escalate privileges.EPSS 0.4%CVE-2023-37885MEDIUMWordPress RealHomes theme <= 4.0.2 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2025-14172MEDIUMWP Page Permalink Extension <= 1.5.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Rewrite Rules FlushEPSS 0.4%CVE-2024-33574MEDIUMWordPress Vitepos plugin <= 3.0.1 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-4895MEDIUMMissing Authorization in GitLabEPSS 0.4%CVE-2024-31248MEDIUMWordPress All-in-One Video Gallery plugin <= 3.5.2 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-32146MEDIUMWordPress Aspose.Words – Import and Export word documents plugin <= 6.3.1 - Broken Access Control vulnerabilityEPSS 0.4%