Falhas do tipo CWE-862

6.946 resultados
CVE-2025-68505MEDIUMWordPress H5P plugin <= 1.16.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-11890HIGHCrypto Payment Gateway with Payeer for WooCommerce <= 1.0.3 - Unauthenticated Payment BypassEPSS 0.3%CVE-2025-28995MEDIUMWordPress Viral Loops WP Integration plugin <= 3.8.1 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2024-9626MEDIUMEditorial Assistant by Sovrn <= 1.3.3 - Missing Authorization to Authenticated (Subscriber+) Attachment Upload and Set Post Featured ImageEPSS 0.3%CVE-2025-53255MEDIUMWordPress HurryTimer plugin <= 2.13.1 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-29006MEDIUMWordPress Direct Checkout for WooCommerce Lite plugin <= 1.0.3 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-29013MEDIUMWordPress Custom Category/Post Type Post order plugin <= 1.6.0 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-31923MEDIUMWordPress CSS3 Accordions for WordPress plugin <= 3.0 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2024-56349MEDIUMIn JetBrains TeamCity before 2024.12 improper access control allowed unauthorized users to modify build logsEPSS 0.3%CVE-2025-54745MEDIUMWordPress miniOrange's Google Authenticator Plugin <= 6.1.1 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2026-49991HIGHRustFS Snowball Auto-Extract: Path Traversal allows cross-bucket object injectionEPSS 0.3%CVE-2025-47469MEDIUMWordPress Media Hygiene plugin <= 4.0.0 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2026-3138MEDIUMProduct Filter for WooCommerce by WBW <= 3.1.2 - Missing Authorization to Unauthenticated Filter Data Deletion via TRUNCATE TABLEEPSS 0.3%CVE-2025-24776MEDIUMWordPress Responsive Flipbooks plugin <= 1.0 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-23971MEDIUMWordPress KI Live Video Conferences plugin <= 5.5.15 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-47602MEDIUMWordPress Calculate Prices based on Distance For WooCommerce plugin <= 1.3.5 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-30957MEDIUMWordPress Activity Plus Reloaded for BuddyPress plugin <= 1.1.2 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2024-54222MEDIUMWordPress Seraphinite Accelerator plugin <= 2.22.15 - Authenticated Sensitive Data Exposure vulnerabilityEPSS 0.3%CVE-2025-47486MEDIUMWordPress Gutenberg & Elementor Templates Importer For Responsive plugin <= 3.1.9 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-46489MEDIUMWordPress Bulk Assign Linked Products For WooCommerce plugin <= 2.1 - Broken Access Control VulnerabilityEPSS 0.3%