Falhas do tipo CWE-862
7.019 resultadosCVE-2025-12134MEDIUMZoloBlocks <= 2.3.11 - Missing Authorization to Unauthenticated Popup Enable/DisableEPSS 0.2%CVE-2025-5885MEDIUMKonica Minolta bizhub cross-site request forgeryEPSS 0.2%CVE-2025-43007MEDIUMMissing Authorization check in SAP Service Parts Management (SPM)EPSS 0.2%CVE-2025-31417MEDIUMWordPress WP Docs plugin < 2.2.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-68578MEDIUMWordPress Addonify plugin <= 2.0.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-59353HIGHManager generates mTLS certificates for arbitrary IP addressesEPSS 0.2%CVE-2025-31611MEDIUMWordPress Auto Post After Image Upload plugin <= 1.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-4609HIGHProfileGrid <= 5.9.8.4 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Group JoiningEPSS 0.2%CVE-2025-66065MEDIUMWordPress Gutenverse plugin <= 3.2.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-69192HIGHWordPress Real Estate Pro plugin <= 2.1.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-68572MEDIUMWordPress BBP Core plugin <= 1.4.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-22671MEDIUMWordPress Disable Elementor Editor Translation plugin <= 1.0.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12350MEDIUMDominoKit <= 1.1.0 - Missing Authorization to Unauthenticated Settings UpdateEPSS 0.2%CVE-2025-68981MEDIUMWordPress HomeFix Elementor Portfolio plugin <= 1.0.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32387MEDIUMWordPress Checkout for PayPal plugin <= 1.0.46 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-31376MEDIUMWordPress NanoSupport plugin <= 0.6.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-27435MEDIUMInformation Disclosure Vulnerability in SAP Commerce CloudEPSS 0.2%CVE-2025-69184HIGHWordPress Institutions Directory plugin <= 1.3.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12892MEDIUMSurvey Maker <= 5.1.9.4 - Missing Authorization to Unauthenticated Limited Option UpdateEPSS 0.2%CVE-2025-8446MEDIUMBlaze Demo Importer <= 1.0.12 - Missing Authorization to Authenticated (Subscriber+) Limited Plugin InstallEPSS 0.2%