Falhas do tipo CWE-862
7.033 resultadosCVE-2026-40185HIGHMissing Authorization on Immich Trip Photo Routes in TREKEPSS 0.2%CVE-2026-24581MEDIUMWordPress Points and Rewards for WooCommerce plugin <= 2.9.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-15332MEDIUMzhayujie CowAgent Message Endpoint channel.py authorizationEPSS 0.2%CVE-2025-50039MEDIUMWordPress VG WORT METIS plugin <= 2.0.1 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-10815MEDIUMLakshayD02 Hostel-Management-System-PHP Admin Dashboard index.php authorizationEPSS 0.2%CVE-2025-63041MEDIUMWordPress Forget About Shortcode Buttons plugin <= 2.1.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-0929MEDIUMRegistrationMagic < 6.0.7.2 - Subscriber+ Form CreationEPSS 0.2%CVE-2026-6709MEDIUMCoinbase Commerce for Contact Form 7 <= 1.1.2 - Missing Authorization to Authenticated (Subscriber+) API Key Modification via 'cccf7_api_key' ParameterEPSS 0.2%CVE-2026-2504MEDIUMDealia – Request a quote <= 1.0.7 - Missing Authorization to Authenticated (Contributor+) Plugin Configuration ResetEPSS 0.2%CVE-2024-33005MEDIUMMissing Authorization check in SAP NetWeaver Application Server (ABAP and Java),SAP Web Dispatcher and SAP Content ServerEPSS 0.2%CVE-2025-64638MEDIUMWordPress OnPay.io for WooCommerce plugin <= 1.0.47 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-37496MEDIUMWordPress Metro Magazine theme <= 1.3.7 - Broken Access Control on Notice Dismissal vulnerabilityEPSS 0.2%CVE-2025-64352LOWWordPress Essential Addons for Elementor plugin <= 6.2.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-23974MEDIUMWordPress Golo theme < 1.7.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-46518HIGHOpenEMR: Stored XSS in prescription CSS/HTML print view via patient demographicsEPSS 0.2%CVE-2025-12361MEDIUMmyCred – Points Management System For Gamification, Ranks, Badges, and Loyalty Program <= 2.9.7.1 - Missing Authorization to Sensitive Information ExposureEPSS 0.2%CVE-2025-1358MEDIUMPix Software Vivaz cross-site request forgeryEPSS 0.2%CVE-2026-33427LOWDiscourse Authorization Page Displays Unvalidated Redirect DomainEPSS 0.2%CVE-2025-67589MEDIUMWordPress WooCommerce PDF Invoices & Packing Slips plugin <= 4.9.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-10173LOWShopEngine Elementor WooCommerce Builder Addon – All in One WooCommerce Solution <= 4.8.3 - Insufficient Authorization to Authenticated (Editor+) Settings UpdateEPSS 0.2%