Falhas do tipo CWE-862
6.923 resultadosCVE-2025-36367HIGHIBM i is affected by a privilege escalation in IBM i SQL servicesEPSS 0.3%CVE-2026-1253MEDIUMGroup Chat & Video Chat by AtomChat <= 1.1.7 - Missing Authorization to Authenticated (Subscriber+) Plugin Options UpdateEPSS 0.3%CVE-2025-30855HIGHWordPress Ads by WPQuads plugin <= 2.0.87.1 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2024-44117MEDIUMMultiple vulnerabilities in SAP NetWeaver Application Server for ABAP and ABAP PlatformEPSS 0.3%CVE-2025-48247MEDIUMWordPress Shortlinks by Pretty Links plugin <= 3.6.15 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2026-2127MEDIUMSiteOrigin Widgets Bundle <= 1.70.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Shortcode ExecutionEPSS 0.3%CVE-2025-23982HIGHWordPress Fare Calculator plugin <= 1.1 - CSRF to Stored Cross-Site Scripting vulnerabilityEPSS 0.3%CVE-2025-43862HIGHDify Allows Unauthorized Access and Modification of APP OrchestrationEPSS 0.3%CVE-2025-22677MEDIUMWordPress Uix Shortcodes plugin <= 2.0.3 - Arbitrary Shortcode Execution vulnerabilityEPSS 0.3%CVE-2026-3571MEDIUMPie Register – User Registration, Profiles & Content Restriction <= 3.8.4.8 - Missing Authorization to Unauthenticated Registration Form Status ModificationEPSS 0.3%CVE-2025-14913MEDIUMFrontend Post Submission Manager Lite <= 1.2.6 - Incorrect Authorization to Unauthenticated Arbitrary Attachment DeletionEPSS 0.3%CVE-2024-31307MEDIUMWordPress Easy Social Share Buttons plugin <= 9.4 - Multiple Broken Access Control vulnerabilityEPSS 0.3%CVE-2026-1932MEDIUMAppointment Booking Calendar Plugin <= 1.0.2 - Missing Authorization to Unauthenticated Arbitrary Appointment Status ModificationEPSS 0.3%CVE-2024-13374MEDIUMWP Table Manager <= 4.1.3 - Missing Authorization to Authenticated (Subscriber+) Directory Traversal to Folder/File Name DisclosureEPSS 0.3%CVE-2025-68072MEDIUMWordPress Easy Property Listings plugin <= 3.5.20 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-26657MEDIUMInformation Disclosure vulnerability in SAP KMC WPCEPSS 0.3%CVE-2025-48138MEDIUMWordPress BERTHA AI plugin <= 1.13 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-49910HIGHWordPress WPGuppy plugin <= 1.1.4 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-11378MEDIUMShortPixel Image Optimizer <= 6.3.4 - Authenticated (Contributor+) Settings Import/ExportEPSS 0.3%CVE-2026-1786MEDIUMTwitter posts to Blog <= 1.11.25 - Missing Authorization to Unauthenticated Plugin Settings UpdateEPSS 0.3%