Falhas do tipo CWE-863
2.100 resultadosCVE-2025-21562MEDIUMVulnerability in the PeopleSoft Enterprise CC Common Application Objects product of Oracle PeopleSoft (component: Run Control Management). EPSS 0.3%CVE-2026-31998HIGHOpenClaw 2026.2.22 < 2026.2.24 - Authorization Bypass in Synology Chat Plugin via Empty allowedUserIdsEPSS 0.3%CVE-2025-48473MEDIUMFreeScout Vulnerable to Insufficient AuthorizationEPSS 0.3%CVE-2026-42571CRITICALPrivilege Escalation Attack affecting Pelican Web UIEPSS 0.3%CVE-2026-20238MEDIUMImproper Access Control through Role Inheritance in Splunk AI Toolkit appEPSS 0.3%CVE-2026-26316HIGHOpenClaw has BlueBubbles webhook auth bypass via loopback proxy trustEPSS 0.3%CVE-2024-56114MEDIUMCanlineapp Online 1.1 is vulnerable to Broken Access Control and allows users with the Auditor role to create an audit template as a result EPSS 0.3%CVE-2026-34364MEDIUMAVideo has User Group-Based Category Access Control Bypass via Missing and Broken Group Filtering in categories.json.phpEPSS 0.3%CVE-2023-52374HIGHPermission control vulnerability in the package management module.Successful exploitation of this vulnerability may affect service confidentEPSS 0.3%CVE-2023-50777MEDIUMJenkins PaaSLane Estimate Plugin 1.0.4 and earlier does not mask PaaSLane authentication tokens displayed on the job configuration form, incEPSS 0.3%CVE-2024-13947HIGHExternal System or Configuration ControlEPSS 0.3%CVE-2026-54761MEDIUMTraefik: Kubernetes Gateway crossProviderNamespaces bypass allows HTTPRoute outside the allowlist to expose internal Traefik servicesEPSS 0.3%CVE-2025-46265HIGHF5OS vulnerabilityEPSS 0.3%CVE-2024-43433MEDIUMMoodle: matrix user/power level management not always working as expected with suspended usersEPSS 0.3%CVE-2025-11439MEDIUMJhumanJ OpnForm integrations authorizationEPSS 0.3%CVE-2024-51417MEDIUMAn issue in System.Linq.Dynamic.Core before 1.6.0 allows remote access to properties on reflection types and static properties/fields.EPSS 0.3%CVE-2020-3404MEDIUMCisco IOS XE Software Consent Token Bypass VulnerabilityEPSS 0.3%CVE-2026-27447MEDIUMOpenPrinting CUPS: Authorization bypass via case-insensitive group-member lookupEPSS 0.3%CVE-2023-35836MEDIUMAn issue was discovered in SolaX Pocket WiFi 3 through 3.001.02. An attacker within RF range can obtain a cleartext copy of the network confEPSS 0.3%CVE-2026-40291HIGHChamilo LMS has Privilege Escalation via API User Role ModificationEPSS 0.3%