Falhas do tipo CWE-862
6.872 resultadosCVE-2025-32973CRITICALorg.xwiki.platform:xwiki-platform-component-wiki provides no warning when granting XWiki.ComponentClass programming rightEPSS 0.3%CVE-2025-27310MEDIUMWordPress Page and Post Lister plugin <= 1.2.1 - Arbitrary Content Deletion vulnerabilityEPSS 0.3%CVE-2025-49234MEDIUMWordPress WP Dummy Content Generator plugin <= 3.4.6 - Arbitrary User Deletion vulnerabilityEPSS 0.3%CVE-2023-33922MEDIUMWordPress Elementor plugin <= 3.13.2 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-1310MEDIUMSimple calendar for Elementor <= 1.6.6 - Missing Authorization to Unauthenticated Arbitrary Calendar Entry DeletionEPSS 0.3%CVE-2026-11398MEDIUMLatePoint <= 5.6.1 - Missing Authorization to Unauthenticated Arbitrary Customer Data Modification via process_step_customer() Booking Form Customer StepEPSS 0.3%CVE-2026-44010HIGHCraft CMS: Missing Authorization in GraphQL Address Resolver Allows Cross-Scope PII DisclosureEPSS 0.3%CVE-2025-48257MEDIUMWordPress Projectopia plugin <= 5.1.17 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2024-10866MEDIUMExport Import Menus <= 1.9.1 - Missing Authorization to Unauthenticated Menu ExportEPSS 0.3%CVE-2024-33925MEDIUMWordPress Embed Google Fonts plugin <= 3.1.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-33915MEDIUMWordPress Debug Log Manager plugin <= 2.3.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-46080MEDIUMWordPress ApplyOnline – Application Form Builder and Manager plugin <= 2.5.3 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-32822MEDIUMWordPress Reviews Plus plugin <= 1.3.4 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-32828MEDIUMWordPress Table Rate Shipping Method for WooCommerce by Flexible Shipping plugin <= 4.24.15 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-14146MEDIUMBooking Calendar <= 10.14.10 - Unauthenticated Sensitive Information ExposureEPSS 0.3%CVE-2023-51692MEDIUMWordPress Customer Reviews for WooCommerce Plugin <= 5.38.1 is vulnerable to Broken Access ControlEPSS 0.3%CVE-2024-32519MEDIUMWordPress GG Woo Feed for WooCommerce plugin <= 1.2.6 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-2568MEDIUMVayu Blocks – Gutenberg Blocks for WordPress & WooCommerce 1.0.4 - 1.2.1 - Missing Authorization to Unauthenticated Limited Arbitrary Options UpdateEPSS 0.3%CVE-2024-32689MEDIUMWordPress WP Social Comments plugin <= 1.7.3 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-24710MEDIUMWordPress Feed Them Social plugin <= 4.2.0 - Broken Access Control vulnerabilityEPSS 0.3%