Weaknesses of type CWE-201
333 resultsCVE-2025-48934MEDIUMDeno.env.toObject() ignores the variables listed in --deny-env and returns all environment variablesEPSS 0.4%CVE-2025-59579HIGHWordPress Simple Job Board plugin <= 2.13.7 - Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2025-68006MEDIUMWordPress Booking Ultra Pro plugin <= 1.1.23 - Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2026-23546MEDIUMWordPress Classified Listing plugin <= 5.3.4 - Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2025-66304MEDIUMGrav Exposes Password Hashes Leading to privilege escalationEPSS 0.4%CVE-2024-13269MEDIUMAdvanced Varnish - Moderately critical - Access bypass - SA-CONTRIB-2024-033EPSS 0.4%CVE-2025-63019MEDIUMWordPress Cookies and Content Security Policy plugin <= 2.34 - Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2025-55715HIGHWordPress Otter - Gutenberg Block Plugin <= 3.1.0 - Sensitive Data Exposure VulnerabilityEPSS 0.3%CVE-2025-15329MEDIUMTanium addressed an information disclosure vulnerability in Threat Response.EPSS 0.3%CVE-2021-1128MEDIUMCisco IOS XR Software Unauthorized Information Disclosure VulnerabilityEPSS 0.3%CVE-2025-67857MEDIUMMoodle: moodle: data exposure of user identifiers in urlsEPSS 0.3%CVE-2025-3529HIGHWordPress Simple PayPal Shopping Cart <= 5.1.2 - Unauthenticated Information Exposure via file_url ParameterEPSS 0.3%CVE-2025-57922MEDIUMWordPress Envíos Coordinadora Woocommerce plugin <= 1.1.32 - Sensitive Data Exposure vulnerabilityEPSS 0.3%CVE-2025-53987MEDIUMWordPress JetMenu <= 2.4.11.1 - Sensitive Data Exposure VulnerabilityEPSS 0.3%CVE-2025-53998MEDIUMWordPress JetWooBuilder <= 2.1.20 - Sensitive Data Exposure VulnerabilityEPSS 0.3%CVE-2025-5519MEDIUMInformation Disclosure in ArgusTech's BILGEREPSS 0.3%CVE-2025-41415HIGHAVEVA PI Integrator Insertion of Sensitive Information into Sent DataEPSS 0.3%CVE-2025-43814MEDIUMIn Liferay Portal 7.4.0 through 7.4.3.112, and older unsupported versions, and Liferay DXP 2023.Q4.0 through 2023.Q4.8, 2023.Q3.1 through 20EPSS 0.3%CVE-2026-48965MEDIUMWordPress XCloner plugin <= 4.8.6 - Sensitive Data Exposure vulnerabilityEPSS 0.3%CVE-2025-24597MEDIUMWordPress Barcode Generator for WooCommerce plugin <= 2.0.2 - Sensitive Data Exposure vulnerabilityEPSS 0.3%