Falhas do tipo CWE-862

7.039 resultados
CVE-2026-24326MEDIUMMissing authorization check in SAP S/4HANA Defense & Security (Disconnected Operations)EPSS 0.2%CVE-2025-39376MEDIUMWordPress Car Park Booking System for WordPress plugin <= 2.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-64382MEDIUMWordPress Order Export & Order Import for WooCommerce plugin <= 2.6.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-64296MEDIUMWordPress Facebook for WooCommerce plugin <= 3.5.7 - Broken Access Control to Notice Dismissal vulnerabilityEPSS 0.2%CVE-2025-48079MEDIUMWordPress ProfileGrid plugin <= 5.9.5.1 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2025-64358MEDIUMWordPress Smart Coupons for WooCommerce plugin <= 2.2.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-48268MEDIUMWordPress Bot for Telegram on WooCommerce plugin <= 1.2.6 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-8377HIGHImproper Authorization in Armiya Technologies' Access Control SystemEPSS 0.2%CVE-2025-11734MEDIUMBroken Link Checker by AIOSEO – Easily Fix/Monitor Internal and External links <= 1.2.5 - Missing Authorization to Authenticated (Contributor+) Arbitrary Post TrashingEPSS 0.2%CVE-2025-12519MEDIUMInformation disclosure on Administration parameters API endpointEPSS 0.2%CVE-2025-48128MEDIUMWordPress Sharespine Woocommerce Connector plugin <= 4.7.55 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-54012HIGHOpen WebUI: Forged model meta.knowledge allows cross-user file read and deletionEPSS 0.2%CVE-2025-64199MEDIUMWordPress wpresidence theme <= 5.3.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-39412MEDIUMWordPress Master Slider plugin <= 3.11.0 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-3624MEDIUMMissing Authorization Vulnerability in Hitachi Ops Center AnalyzerEPSS 0.2%CVE-2025-7663MEDIUMOvatheme Events Manager <= 1.8.6 - Missing AuthorizationEPSS 0.2%CVE-2025-12133MEDIUMEPROLO Dropshipping <= 2.3.1 - Missing Authorization to Authenticated (Subscriber+) Tracking Data ModificationEPSS 0.2%CVE-2026-25419MEDIUMWordPress UpsellWP plugin <= 2.2.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-63079MEDIUMWordPress Live Copy Paste for Elementor plugin <= 1.5.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24541MEDIUMWordPress Download After Email plugin <= 2.1.9 - Broken Access Control vulnerabilityEPSS 0.2%