Weaknesses of type CWE-200
3,933 resultsCVE-2025-36759HIGHSensitive Information Disclosure in SolaX CloudEPSS 0.3%CVE-2026-44206MEDIUMFrappe: DB Schema Enumeration via Frappe-Authorization-SourceEPSS 0.3%CVE-2025-23174HIGHYoel Geva - CWE-200: Exposure of Sensitive Information to an Unauthorized ActorEPSS 0.3%CVE-2025-31964LOWHCL BigFix IVR is impacted by an improper service binding configurationEPSS 0.3%CVE-2025-11145HIGHUser Enumeration in CBK Soft's enVisionEPSS 0.3%CVE-2024-42493MEDIUMDorsett Controls InfoScan Exposure of Sensitive Information To An Unauthorized ActorEPSS 0.3%CVE-2021-0212MEDIUMContrail Networking: Administrator credentials are exposed in a plaintext fileEPSS 0.3%CVE-2024-40798LOWThis issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, macOS MonterEPSS 0.3%CVE-2026-40885HIGHgoshs: Public collaborator feed leaks .goshs ACL credentials and enables unauthorized accessEPSS 0.3%CVE-2023-49774MEDIUMWordPress WP Photo Album Plus plugin <= 8.5.02.005 - IP Bypass vulnerabilityEPSS 0.3%CVE-2025-39204HIGHA vulnerability exists in the Web interface of the MicroSCADA X SYS600 product. The filtering query in the Web interface can be malformed, sEPSS 0.3%CVE-2025-58581MEDIUMInformation Disclosure Through Stacktrace-/MQTT/Config/changeAllEPSS 0.3%CVE-2026-5003MEDIUMPromtEngineer localGPT Web api_server.py handle_index information disclosureEPSS 0.3%CVE-2026-2976MEDIUMFastApiAdmin Download Endpoint controller.py download_controller information disclosureEPSS 0.3%CVE-2025-20325LOWSensitive Information Disclosure in the SHCConfig logging channel in Clustered Deployments in Splunk EnterpriseEPSS 0.3%CVE-2025-27827HIGHA vulnerability in the legacy chat component of Mitel MiContact Center Business through 10.2.0.3 could allow an unauthenticated attacker to EPSS 0.3%CVE-2026-39079HIGHAn issue in prestashop upsshipping all versions through at least 2.4.0 allows a remote attacker to obtain sensitive information via the /modEPSS 0.3%CVE-2026-47136MEDIUMRustFS: Unauthenticated RustFS console license endpoint exposes license metadataEPSS 0.3%CVE-2024-5524MEDIUMInformation exposure vulnerability in AstrotalksEPSS 0.3%CVE-2024-41701MEDIUMAccuPOS – CWE-200: Exposure of Sensitive Information to an Unauthorized ActorEPSS 0.3%