Falhas do tipo CWE-862

7.075 resultados
CVE-2025-68557MEDIUMWordPress Chakra test plugin <= 1.0.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-69353MEDIUMWordPress Proxy & VPN Blocker plugin <= 3.5.3 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-22487MEDIUMWordPress Speed Kit plugin <= 2.0.2 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-63082MEDIUMPerfect Support Ticketing System 1.7 Broken Access Control via Agent AssignmentEPSS 0.2%CVE-2026-48811MEDIUMFreeScout: Thread Deletion Bypasses Mailbox Access RevocationEPSS 0.2%CVE-2026-7108MEDIUMcode-projects Invoice System in Laravel cross-site request forgeryEPSS 0.2%CVE-2026-10787MEDIUMMissing authorization in the deleted user groups API in Devolutions Server allows an authenticated low-privileged user to enumerate metadataEPSS 0.2%CVE-2025-62131MEDIUMWordPress Tasty Recipes Lite plugin <= 1.1.5 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-69354MEDIUMWordPress Better Business Reviews plugin <= 0.1.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24371MEDIUMWordPress BA Book Everything plugin <= 1.8.16 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-31046MEDIUMWordPress AnyWhere Elementor Pro plugin <= 2.29 - Broken Access Control VulnerabilityEPSS 0.2%CVE-2026-0071CRITICALIn SettingsLib, there is a possible missing permission check due to a logic error in the code. This could lead to local escalation of privilEPSS 0.2%CVE-2025-62154MEDIUMWordPress AI Content Writing Assistant (Content Writer, ChatGPT, Image Generator) All in One plugin <= 1.1.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2024-33685MEDIUMWordPress Startupzy theme <= 1.1.1 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-25444MEDIUMWordPress WpBookingly plugin <= 1.2.9 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-63004MEDIUMWordPress All in One Accessibility plugin <= 1.15 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2025-62130MEDIUMWordPress Accordion Slider Gallery plugin <= 2.7 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-24520MEDIUMWordPress Tiktok Feed plugin <= 1.0.24 - Broken Access Control vulnerabilityEPSS 0.2%CVE-2026-4971MEDIUMSourceCodester Note Taking App cross-site request forgeryEPSS 0.2%CVE-2025-62150MEDIUMWordPress History Timeline plugin <= 1.0.6 - Broken Access Control vulnerabilityEPSS 0.2%