Falhas do tipo CWE-862
7.006 resultadosCVE-2026-59262HIGHAFFiNE - Unauthorized Document Edit History Access via GraphQL histories FieldEPSS 0.2%CVE-2026-44563MEDIUMOpen WebUI: Ollama Model Access Control Bypass via /api/generate, /api/embed, /api/embeddings, and /api/showEPSS 0.2%CVE-2026-40592MEDIUMFreeScout's cross-user undo reply allows mailbox peers to recall another agent's outbound replyEPSS 0.2%CVE-2026-47343HIGHTYPO3 CMS - Destructive Actions on File Mount FoldersEPSS 0.2%CVE-2026-1935MEDIUMCompany Posts for LinkedIn <= 1.0.0 - Missing Authorization to Authenticated (Subscriber+) Arbitrary LinkedIn Post Data DeletionEPSS 0.2%CVE-2025-0954MEDIUMWP Online Contract <= 5.1.4 - Missing Authorization to Unauthenticated Settings ImportEPSS 0.2%CVE-2023-47757MEDIUMWordPress AWeber Plugin <= 7.3.9 is vulnerable to Broken Access ControlEPSS 0.2%CVE-2024-12204MEDIUMCoupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups <= 1.3.5 - Missing AuthorizationEPSS 0.2%CVE-2025-69298HIGHWordPress Gauge theme <= 6.56.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-48883HIGHWordPress WPC Product Bundles for WooCommerce plugin <= 8.5.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-54835HIGHWordPress Five Star Restaurant Menu plugin <= 2.5.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-47349MEDIUMTYPO3 CMS - Broken Access Control in RecyclerEPSS 0.2%CVE-2025-69297HIGHWordPress Aardvark Plugin plugin <= 2.19 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-48117MEDIUMWordPress WooCommerce POS plugin <= 1.7.8 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-15327MEDIUMTanium addressed an improper access controls vulnerability in Deploy.EPSS 0.2%CVE-2025-60165MEDIUMWordPress Frames Theme <= 1.5.7 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-49070HIGHWordPress Knit Pay plugin <= 9.4.0.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-41192HIGHFreeScout's client-controlled attachment IDs allow deletion of existing conversation attachmentsEPSS 0.2%CVE-2026-54828HIGHWordPress Motors plugin <= 1.4.109 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-15326MEDIUMTanium addressed an improper access controls vulnerability in Patch.EPSS 0.2%