Weaknesses of type CWE-200

3,933 results
CVE-2024-49284MEDIUMWordPress WP SendFox plugin <= 1.3.1 - Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2023-48714MEDIUMRecord titles for restricted records can be viewed if exposed by GridFieldAddExistingAutocompleterEPSS 0.4%CVE-2024-34003MEDIUMmoodle: authenticated LFI risk in some misconfigured shared hosting environments via modified mod_workshop backupEPSS 0.4%CVE-2025-26001HIGHTelesquare TLR-2005KSH 1.1.4 is vulnerable to Information Disclosure via the parameter getUserNamePassword.EPSS 0.4%CVE-2025-46813MEDIUMPrivate data leak on login-required Discourse sitesEPSS 0.4%CVE-2026-27193HIGHFeathers exposes internal headers via unencrypted session cookieEPSS 0.4%CVE-2019-1731MEDIUMCisco NX-OS Software SSH Key Information Disclosure VulnerabilityEPSS 0.4%CVE-2023-42884MEDIUMThis issue was addressed with improved redaction of sensitive information. This issue is fixed in macOS Sonoma 14.2, iOS 17.2 and iPadOS 17.EPSS 0.4%CVE-2026-46910CRITICALVulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Enterprise Infrastructure Security). SupportedEPSS 0.4%CVE-2026-32084MEDIUMWindows Print Spooler Information Disclosure VulnerabilityEPSS 0.4%CVE-2024-12159MEDIUMOptimize Your Campaigns – Google Shopping – Google Ads – Google Adwords <= 3.1 - Information ExposureEPSS 0.4%CVE-2024-21902MEDIUMQTS, QuTS heroEPSS 0.4%CVE-2024-34529MEDIUMNebari through 2024.4.1 prints the temporary Keycloak root password.EPSS 0.4%CVE-2025-54380MEDIUMOpencast still publishes global system account credentialsEPSS 0.4%CVE-2026-54304HIGHn8n: SecurityScorecard Node Leaks API Token to User-Controlled HostEPSS 0.4%CVE-2024-44820HIGHA sensitive information disclosure vulnerability exists in ZZCMS v.2023 and before within the eginfo.php file located at /3/E_bak5.1/upload/EPSS 0.4%CVE-2023-44097Vulnerability of the permission to access device SNs being improperly managed.Successful exploitation of this vulnerability may affect serviEPSS 0.4%CVE-2025-25468MEDIUMFFmpeg git-master before commit d5873b was discovered to contain a memory leak in the component libavutil/mem.c.EPSS 0.4%CVE-2025-14197MEDIUMVerysync 微力同步 Web Administration f96956469e7be39d information disclosureEPSS 0.4%CVE-2023-38302MEDIUMA certain software build for the Sharp Rouvo V device (SHARP/VZW_STTM21VAPP/STTM21VAPP:12/SP1A.210812.016/1KN0_0_530:user/release-keys) leakEPSS 0.4%