Weaknesses of type CWE-200
3,933 resultsCVE-2025-53512MEDIUMSensitive log retrieval in JujuEPSS 0.3%CVE-2025-13526HIGHOneClick Chat to Order <= 1.0.8 - Insecure Direct Object Reference to Unauthenticated Sensitive Information ExposureEPSS 0.3%CVE-2026-32002MEDIUMOpenClaw < 2026.2.23 - Sandbox Boundary Bypass via Image Tool workspaceOnly BypassEPSS 0.3%CVE-2025-23215CRITICALPMD Designer's release key passphrase (GPG) available on Maven Central in cleartextEPSS 0.3%CVE-2025-0227MEDIUMTsinghua Unigroup Electronic Archives System downLoad.html information disclosureEPSS 0.3%CVE-2023-50346LOWAn information disclosure affects DRYiCE MyXalyticsEPSS 0.3%CVE-2026-35413MEDIUMDirectus GraphQL Schema SDL Disclosure SettingEPSS 0.3%CVE-2023-43814LOWExposure of poll options and votes to unauthorized users in DiscourseEPSS 0.3%CVE-2024-27362MEDIUMA vulnerability was discovered in Samsung Mobile Processors Exynos 1280, Exynos 2200, Exynos 1330, Exynos 1380, and Exynos 2400 where they dEPSS 0.3%CVE-2025-40645HIGHExposure of sensitive information in VidayEPSS 0.3%CVE-2025-59454MEDIUMApache CloudStack: Lack of user permission validation leading to data leak for few APIsEPSS 0.3%CVE-2026-49742HIGHTYPO3 CMS - Broken Access Control in Media ModuleEPSS 0.3%CVE-2026-0888MEDIUMInformation disclosure in the XML componentEPSS 0.3%CVE-2025-69226MEDIUMAIOHTTP allows for a brute-force leak of internal static filepath componentsEPSS 0.3%CVE-2025-12408MEDIUMEvents Manager <= 7.2.2.2 - Unauthenticated Information ExposureEPSS 0.3%CVE-2025-66625MEDIUMUmbraco Vulnerable to Improper File Access and Credential Exposure through Dictionary Import FunctionalityEPSS 0.3%CVE-2025-11145HIGHUser Enumeration in CBK Soft's enVisionEPSS 0.3%CVE-2024-41733MEDIUMInformation Disclosure Vulnerability in SAP CommerceEPSS 0.3%CVE-2025-36759HIGHSensitive Information Disclosure in SolaX CloudEPSS 0.3%CVE-2026-4126MEDIUMTable Manager <= 1.0.0 - Authenticated (Contributor+) Sensitive Information Exposure via 'table' Shortcode AttributeEPSS 0.3%