Falhas do tipo CWE-862
6.960 resultadosCVE-2025-30932MEDIUMWordPress WP Compress for MainWP plugin <= 6.30.32 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2024-12879MEDIUMWPBot Pro Wordpress Chatbot <= 13.5.5 - Missing Authorization to Authenticated (Subscriber+) Simple Text Response CreationEPSS 0.3%CVE-2025-49998MEDIUMWordPress WooCommerce Fortnox Integration plugin <= 4.5.5 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2026-9132MEDIUMMissing authorization vulnerability in GitHub Enterprise Server allowed disclosure of private repository contents via the Copilot pull request diff summary endpointEPSS 0.3%CVE-2025-32242MEDIUMWordPress Hive Support plugin <= 1.2.5 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-11742MEDIUMWPC Smart Wishlist for WooCommerce <= 5.0.4 - Missing Authorization to Authenticated (Subscriber+) Information ExposureEPSS 0.3%CVE-2026-43885HIGHWWBN AVideo: Exposure of Sensitive Information to an Unauthorized Actor and Missing AuthorizationEPSS 0.3%CVE-2026-44884MEDIUMPortainer: Missing authorization on custom template file endpoint exposes template contentEPSS 0.3%CVE-2025-8565HIGHPrivacy Policy Generator, Terms & Conditions Generator WordPress Plugin : WP Legal Pages <= 3.4.3 - Missing Authorization to Authenticated (Contributor+) Arbitrary Plugin InstallationEPSS 0.3%CVE-2026-3143MEDIUMTotal Upkeep <= 1.17.1 - Missing Authorization to Unauthenticated Rollback CancellationEPSS 0.3%CVE-2026-22492MEDIUMWordPress Docket Cache plugin <= 24.07.04 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-36756MEDIUMDevice Takeover vulnerability in SolaX CloudEPSS 0.3%CVE-2026-57332HIGHWordPress Wallet System for WooCommerce plugin <= 2.7.6 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-68834HIGHWordPress Sync Master Sheet – Product Sync with Google Sheet for WooCommerce plugin <= 1.1.3 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-47560MEDIUMWordPress MapSVG plugin < 8.6.13 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2025-49240MEDIUMWordPress DocsPress plugin <= 2.5.2 - Broken Access Control VulnerabilityEPSS 0.3%CVE-2023-38395MEDIUMWordPress WP Clone Menu plugin <= 1.0.1 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-62976MEDIUMWordPress Sendle Shipping plugin <= 6.02 - Broken Access Control vulnerabilityEPSS 0.3%CVE-2025-65742HIGHAn unauthenticated Broken Function Level Authorization (BFLA) vulnerability in Newgen OmniDocs v11.0 allows attackers to obtain sensitive inEPSS 0.3%CVE-2026-56104HIGHChainlit < 2.10.1 Session Hijacking via WebSocket Session RestorationEPSS 0.3%