Falhas do tipo CWE-862
7.062 resultadosCVE-2025-62087MEDIUMWordPress Sticky Notes for WP Dashboard plugin <= 1.2.4 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-62147MEDIUMWordPress Realbig plugin <= 1.1.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-39699MEDIUMWordPress AI Workflow Automation plugin <= 1.4.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-12174MEDIUMDirectorist: AI-Powered Business Directory Plugin with Classified Ads Listings <= 8.5.2 - Missing Authorization to Authenticated (Subscriber+) Data Export and Slug UpdateEPSS 0.2%CVE-2025-69028MEDIUMWordPress weForms plugin <= 1.6.25 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-61983MEDIUMWordPress Church Admin plugin <= 5.0.30 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24619MEDIUMWordPress PopCash.Net Code Integration Tool plugin <= 1.8 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-57660MEDIUMWordPress Booking and Rental Manager plugin <= 2.7.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25010MEDIUMWordPress Share This Image plugin <= 2.09 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-63031MEDIUMWordPress EasyTest plugin <= 1.0.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-40098MEDIUMOpenMage LTS imports cross-user wishlist item via shared wishlist code, leading to private option disclosure and file-disclosure variantEPSS 0.2%CVE-2026-24615MEDIUMWordPress Cream Magazine theme <= 2.1.10 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-32386MEDIUMWordPress Envo Extra plugin <= 1.9.13 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-59005MEDIUMWordPress Categorify plugin <= 1.0.7.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-69022MEDIUMWordPress HR Management Lite plugin <= 3.6 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-48731MEDIUMUnauthorized Subscription Edit to Confluence Space in Mattermost Confluence PluginEPSS 0.2%CVE-2026-26939MEDIUMMissing Authorization in Kibana Leading to Unauthorized Endpoint Response Action ConfigurationEPSS 0.2%CVE-2026-27111MEDIUMKargo has Missing Authorization Vulnerabilities in Approval & Promotion REST API EndpointsEPSS 0.2%CVE-2024-43088HIGHIn multiple functions in AppInfoBase.java, there is a possible way to manipulate app permission settings belonging to another user on the deEPSS 0.2%CVE-2026-32453MEDIUMWordPress Avada Core plugin < 5.15.0 - Broken Access Control vulnerabilityEPSS 0.2%