Weaknesses of type CWE-200
3,933 resultsCVE-2024-13451MEDIUMContact Form by Bit Form <= 2.17.5 - Unauthenticated Sensitive Information ExposureEPSS 0.3%CVE-2025-40940MEDIUMA vulnerability has been identified in SIMATIC CN 4100 (All versions < V4.0.1). The affected application exhibits inconsistent SNMP behaviorEPSS 0.3%CVE-2022-42866MEDIUMThe issue was addressed with improved handling of caches. This issue is fixed in iOS 16.2 and iPadOS 16.2, macOS Ventura 13.1, tvOS 16.2, waEPSS 0.3%CVE-2025-63212MEDIUMGatesAir Flexiva-LX devices on firmware 1.0.13 and 2.0, including models LX100, LX300, LX600, and LX1000, expose sensitive session identifieEPSS 0.3%CVE-2025-55265MEDIUMHCL Aftermarket DPC is affected by File DiscoveryEPSS 0.3%CVE-2025-15527MEDIUMWP Recipe Maker <= 10.2.2 - Insecure Direct Object Reference to Sensitive Information ExposureEPSS 0.3%CVE-2023-41881LOWDeleting a collaboration should also delete linked resourcesEPSS 0.3%CVE-2024-5880MEDIUMHide My Site <= 2.2 - Unauthenticated Information ExposureEPSS 0.3%CVE-2025-28235HIGHAn information disclosure vulnerability in the component /socket.io/1/websocket/ of Soundcraft Ui Series Model(s) Ui12 and Ui16 Firmware v1.EPSS 0.3%CVE-2025-14574MEDIUMweDocs: AI Powered Knowledge Base, Docs, Documentation, Wiki & AI Chatbot <= 2.1.15 - Unauthenticated Sensitive Information ExposureEPSS 0.3%CVE-2026-42564HIGHjotty·page: Unauthenticated Path Traversal leads to sensitive file disclosure and session-token reuse impactEPSS 0.3%CVE-2025-46552MEDIUMKHC-INVITATION-AUTOMATION Sensitive User Information Leakage in Invitation AutomationEPSS 0.3%CVE-2023-5579LOWyhz66 Sandbox User Data information disclosureEPSS 0.3%CVE-2025-54290MEDIUMProject Existence Disclosure via Error Handling in LXD Image ExportEPSS 0.3%CVE-2026-28276HIGHInitiative Allows Unauthenticated Access to Uploaded Documents via Public /uploads/ EndpointEPSS 0.3%CVE-2026-8766MEDIUMKilo-Org kilocode Environment Variable config.ts load information disclosureEPSS 0.3%CVE-2024-12538MEDIUMDuplicate Post, Page and Any Custom Post <= 3.5.5 - Authenticated (Contributor+) Post Disclosure via Post DuplicationEPSS 0.3%CVE-2026-3058MEDIUMSeraphinite Accelerator <= 2.28.14 - Authenticated (Subscriber+) Exposure of Sensitive Information to an Unauthorized ActorEPSS 0.3%CVE-2026-32631HIGHGit for Windows: `git clone` from manipulated repositories can leak NTLM hashes to arbitrary serversEPSS 0.3%CVE-2025-5184MEDIUMSummer Pearl Group Vacation Rental Management Platform HTTP Response Header information disclosureEPSS 0.3%