Weaknesses of type CWE-200
3,929 resultsCVE-2026-53647MEDIUMFOSSBilling vulnerable to unauthenticated API key configuration disclosure via guest Serviceapikey get_info endpointEPSS 0.4%CVE-2025-15625CRITICALUnauthenticated execution of arbitrary SQL queries in Sparx Pro Cloud ServerEPSS 0.4%CVE-2024-6336MEDIUMSecurity misconfiguration was identified in GitHub Enterprise Server that allowed sensitive data exposureEPSS 0.4%CVE-2022-36075LOWFile list exposure in Nextcloud Files Access ControlEPSS 0.4%CVE-2023-1831HIGHUser password logged in audit logsEPSS 0.4%CVE-2025-55679MEDIUMWindows Kernel Information Disclosure VulnerabilityEPSS 0.4%CVE-2024-24817MEDIUMUser can see invitees in events created in PMs and private categoriesEPSS 0.4%CVE-2026-24473MEDIUMHono has an Arbitrary Key Read in Serve static Middleware (Cloudflare Workers Adapter)EPSS 0.4%CVE-2024-10357MEDIUMClever Addons for Elementor <= 2.2.1 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor TemplatesEPSS 0.4%CVE-2025-50708HIGHAn issue in Perplexity AI GPT-4 v.2.51.0 allows a remote attacker to obtain sensitive information via the token component in the shared chatEPSS 0.4%CVE-2023-38718LOWIBM Robotic Process Automation information disclosureEPSS 0.4%CVE-2023-50950LOWIBM QRadar information disclosureEPSS 0.4%CVE-2024-43257MEDIUMWordPress Leopard plugin <= 2.0.36 - Subscriber+ Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2022-43890MEDIUMIBM Security Verify Privilege On-Premises information disclosureEPSS 0.4%CVE-2018-10599—IntelliVue Patient Monitors MP Series (including MP2/X2/MP30/MP50/MP70/NP90/MX700/800) Rev B-M, IntelliVue Patient Monitors MX (MX400-550) REPSS 0.4%CVE-2024-24845MEDIUMWordPress Post Thumbnail Editor plugin <= 2.4.8 - Unauthenticated Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2024-43251MEDIUMWordPress Bit Form Pro plugin <= 2.6.4 - Authenticated Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2025-20221MEDIUMA vulnerability in the packet filtering features of Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote attacker to bypass LEPSS 0.4%CVE-2022-32933MEDIUMAn information disclosure issue was addressed by removing the vulnerable code. This issue is fixed in macOS Monterey 12.5. A website may be EPSS 0.4%CVE-2025-11203LOWLiteLLM Information health API_KEY Information Disclosure VulnerabilityEPSS 0.4%