Falhas do tipo CWE-862
7.035 resultadosCVE-2026-32413MEDIUMWordPress Permalink Manager Lite plugin < 2.5.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-62132MEDIUMWordPress Tasty Recipes Lite plugin <= 1.1.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32404MEDIUMWordPress Studio99 WP Monitor plugin <= 1.0.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-68508MEDIUMWordPress Brave plugin <= 0.8.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-11852MEDIUMDebusine is an integrated solution to build, distribute and maintain a Debian-based distribution. Files managed by debusine are organized inEPSS 0.2%CVE-2026-32395MEDIUMWordPress Xpro Addons For Beaver Builder – Lite plugin <= 1.5.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32332MEDIUMWordPress Easy Form plugin <= 2.7.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-47692MEDIUMWordPress ContentStudio plugin <= 1.3.5 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-14427MEDIUMShield Security: Blocks Bots, Protects Users, and Prevents Security Breaches <= 21.0.9 - Missing Authorization to Authenticated (Subscriber+) Email MFA UpdateEPSS 0.2%CVE-2025-48268MEDIUMWordPress Bot for Telegram on WooCommerce plugin <= 1.2.6 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-39398MEDIUMWordPress Hotel + Bed and Breakfast Booking Calendar Theme | Bellevue theme <= 4.2.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-3624MEDIUMMissing Authorization Vulnerability in Hitachi Ops Center AnalyzerEPSS 0.2%CVE-2025-62115MEDIUMWordPress Hide Plugins plugin <= 1.0.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-39376MEDIUMWordPress Car Park Booking System for WordPress plugin <= 2.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-54012HIGHOpen WebUI: Forged model meta.knowledge allows cross-user file read and deletionEPSS 0.2%CVE-2026-24326MEDIUMMissing authorization check in SAP S/4HANA Defense & Security (Disconnected Operations)EPSS 0.2%CVE-2025-12519MEDIUMInformation disclosure on Administration parameters API endpointEPSS 0.2%CVE-2025-48128MEDIUMWordPress Sharespine Woocommerce Connector plugin <= 4.7.55 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-9234MEDIUMJTL-Connector for WooCommerce <= 2.4.1 - Missing Authorization to Authenticated (Subscriber+) Settings Modification via Multiple FunctionsEPSS 0.2%CVE-2025-64199MEDIUMWordPress wpresidence theme <= 5.3.2 - Broken Access Control vulnerabilityEPSS 0.2%