Falhas do tipo CWE-862
6.955 resultadosCVE-2025-28997MEDIUMWordPress WP AutoKeyword plugin <= 1.0 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-48096MEDIUMWordPress Custom CSS plugin <= 1.4.0 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-31630MEDIUMWordPress The Business <= 1.6.1 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-32240MEDIUMWordPress Site Notify plugin <= 1.0 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-49270MEDIUMWordPress WP-CRM System plugin <= 3.4.2 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2026-4094HIGHFOX – Currency Switcher Professional for WooCommerce <= 1.4.5 - Missing Authorization to Authenticated (Contributor+) Configuration DeletionEPSS 0.3%CVE-2026-6663MEDIUMGWD Connect <= 2.9 - Unauthenticated Limited Code Execution via update_agentEPSS 0.3%CVE-2024-10614MEDIUMCustomer Reviews for WooCommerce <= 5.61.0 - Missing Authorization to Authenticated (Subscriber+) Import CancellationEPSS 0.3%CVE-2024-13526MEDIUMEventPrime – Events Calendar, Bookings and Tickets <= 4.0.7.3 - Missing Authorization to Authenticated (Subscriber+) Event Attendees ExportEPSS 0.3%CVE-2026-40314MEDIUMNamelessMC: Reactions on private or blocking profile posts can be read and modified without proper authorizationEPSS 0.3%CVE-2026-24603MEDIUMWordPress Universal Google Adsense and Ads manager plugin <= 1.1.8 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2023-7288MEDIUMPaytium: Mollie payment forms & donations <= 4.3.7 - Missing Authorization in 'update_profile_preference'EPSS 0.3%CVE-2026-25367MEDIUMWordPress CitiLights theme < 3.7.2 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-42983HIGHMissing Authorization check in SAP Business Warehouse and SAP Plug-In BasisEPSS 0.3%CVE-2026-9233MEDIUMQuiz and Survey Master (QSM) <= 11.1.4 - Missing Authorization to Authenticated (Contributor+) Arbitrary Modification via qsm_insert_quiz_template AJAX ActionEPSS 0.3%CVE-2026-25374MEDIUMWordPress Spa and Salon theme <= 1.3.2 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2024-47585MEDIUMMissing Authorization check in SAP NetWeaver Application Server for ABAP and ABAP PlatformEPSS 0.3%CVE-2023-7292MEDIUMPaytium: Mollie payment forms & donations <= 4.3.7 - Missing Authorization in 'paytium_notice_dismiss'EPSS 0.3%CVE-2025-5018HIGHHive Support <= 1.2.5 - Authenticated (Subscriber+) Missing Authorization via hs_update_ai_chat_settings and hive_lite_support_get_all_binboxEPSS 0.3%CVE-2026-22447MEDIUMWordPress Prowess theme <= 1.8.1 - Broken Access Control vulnerabilityEPSS 0.3%