Falhas do tipo CWE-862

6.850 resultados
CVE-2025-69103HIGHWordPress Brikk theme <= 3.0.0 - Arbitrary Content Deletion vulnerabilityEPSS 0.4%CVE-2023-52227MEDIUMWordPress MailerLite – WooCommerce integration plugin <= 2.0.8 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2025-69340HIGHWordPress WeDesignTech Ultimate Booking Addon plugin <= 1.0.3 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-5710MEDIUMImproper Access Control in Team Management in berriai/litellmEPSS 0.4%CVE-2023-6742MEDIUMEnvira Gallery Lite <= 1.8.7.2 - Missing Authorization to Gallery Modification via envira_gallery_insert_imagesEPSS 0.4%CVE-2023-2561MEDIUMGallery Metabox <= 1.5 - Missing Authorization via gallery_removeEPSS 0.4%CVE-2025-13781MEDIUMMissing Authorization in GitLabEPSS 0.4%CVE-2024-32804MEDIUMWordPress WP GoToWebinar plugin <= 14.46 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-36516HIGHWordPress LearnPress plugin <= 4.2.3 - Authenticated Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-1686MEDIUMThank You Page Customizer for WooCommerce – Increase Your Sales <= 1.1.2 - Missing Authorization to Authenticated (Subscriber+) Data ExportEPSS 0.4%CVE-2024-1870MEDIUMColibri Page Builder <= 1.0.260 - Missing AuthorizationEPSS 0.4%CVE-2024-9829MEDIUMDownload Plugin <= 2.2.0 - Missing Authorization to Authenticated (Subscriber+) User Metadata and Comment DownloadEPSS 0.4%CVE-2023-4792MEDIUMDuplicate Post Page Menu & Custom Post Type <= 2.3.1 - Missing Authorization to Post DuplicationEPSS 0.4%CVE-2024-4566HIGHShopLentor <= 2.8.8 - Missing Authorization to WordPress Option ModificationEPSS 0.4%CVE-2026-34046HIGHLangflow: Authenticated Users Can Read, Modify, and Delete Any Flow via Missing Ownership CheckEPSS 0.4%CVE-2024-1771MEDIUMTotal <= 2.1.59 - Missing Authorization to Authenticated (Subscriber+) Sections UpdateEPSS 0.4%CVE-2024-44038MEDIUMWordPress Sunshine Photo Cart plugin <= 3.2.9 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-47698HIGHWordPress Japanized For WooCommerce plugin <= 2.6.4 - Multiple Broken Access Control vulnerabilityEPSS 0.4%CVE-2022-45826MEDIUMWordPress Sunshine Photo Cart plugin <= 2.9.13 - Auth. Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-47224HIGHWordPress WP Travel plugin <= 7.8.0 - Broken Access Control vulnerabilityEPSS 0.4%