Falhas do tipo CWE-862
6.860 resultadosCVE-2024-33920MEDIUMWordPress Democracy Poll plugin <= 6.0.3 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-11936HIGHZox News <= 3.16.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Options UpdateEPSS 0.4%CVE-2024-56031MEDIUMWordPress Smart Shopify Product plugin <= 1.0.2 - Arbitrary Content Deletion vulnerabilityEPSS 0.4%CVE-2023-50850MEDIUMWordPress Woo Subscriptions plugin < 5.8.0 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-36515HIGHWordPress LearnPress plugin <= 4.2.3 - Unauthenticated Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-1634MEDIUMScheduling Plugin – Online Booking for WordPress <= 3.5.10 - Missing Authorization to Unauthenticated Service DisconnectionEPSS 0.4%CVE-2022-43476MEDIUMWordPress Subscribe to Category Plugin <= 2.7.4 is vulnerable to Broken Access ControlEPSS 0.4%CVE-2024-24850MEDIUMWordPress Quicksand Post Filter jQuery plugin <= 3.1.1 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-13367MEDIUMSandbox <= 0.4 - Missing Authorization to Authenticated (Subscriber+) Sandbox DownloadEPSS 0.4%CVE-2024-24805MEDIUMWordPress WP Dummy Content Generator plugin <= 3.1.2 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-12349MEDIUMJFinalCMS save cross-site request forgeryEPSS 0.4%CVE-2022-45841MEDIUMWordPress Robo Gallery plugin <= 3.2.9 - Auth. Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-31432MEDIUMWordPress Restrict Content plugin <= 3.2.8 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-31242MEDIUMWordPress Bricksforge plugin <= 2.0.17 - Unauthenticated Arbitrary Email Sending vulnerabilityEPSS 0.4%CVE-2024-0372MEDIUMViews for WPForms <= 3.2.2 - Missing Authorization via get_form_fieldsEPSS 0.4%CVE-2024-1078MEDIUMQuiz Maker <= 6.5.2.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Quiz Creation & ModificationEPSS 0.4%CVE-2024-1350MEDIUMWordPress Honeypot for WP Comment plugin <= 2.2.3 - Arbitrary File Deletion vulnerabilityEPSS 0.4%CVE-2024-37123MEDIUMWordPress Ibtana – WordPress Website Builder plugin <= 1.2.3.3 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2025-39560MEDIUMWordPress Live Forms plugin <= 4.8.4 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-43256HIGHWordPress Leopard plugin <= 2.0.36 - Subscriber+ Plugin Settings Change vulnerabilityEPSS 0.4%