Fallos del tipo CWE-200
3916 resultadosCVE-2026-2975MEDIUMFastApiAdmin Custom Documentation Endpoint init_app.py reset_api_docs information disclosureEPSS 0.4%CVE-2024-13525MEDIUMCustomer Email Verification for WooCommerce <= 2.9.4 - Authenticated (Contributor+) Sensitive Information ExposureEPSS 0.4%CVE-2023-28357MEDIUMA vulnerability has been identified in Rocket.Chat, where the ACL checks in the Slash Command /mute occur after checking whether a user is aEPSS 0.4%CVE-2022-31746MEDIUMInternal URLs are protected by a secret UUID key, which could have been leaked to web page through the Referrer header. This vulnerability aEPSS 0.4%CVE-2026-7041MEDIUM666ghj MiroFish Werkzeug Debugger PIN console information disclosureEPSS 0.4%CVE-2026-27161HIGHUnauthenticated Information Disclosure via .htaccess Reliance in Sensitive DirectoriesEPSS 0.4%CVE-2023-38494MEDIUMThe cloud version of the MeterSphere interface leaks some sensitive data without authenticationEPSS 0.4%CVE-2025-43449HIGHThe issue was addressed with improved handling of caches. This issue is fixed in iOS 26.1 and iPadOS 26.1. A malicious app may be able to trEPSS 0.4%CVE-2024-55951MEDIUMMetabase sandboxed users could see filter values from other sandboxed usersEPSS 0.4%CVE-2026-0883MEDIUMInformation disclosure in the Networking componentEPSS 0.4%CVE-2024-3228MEDIUMSocial Sharing Plugin – Kiwi <= 2.1.7 - Information DisclosureEPSS 0.4%CVE-2026-55447CRITICALLangflow: BaseFileComponent-based nodes arbitrary file read with RCE exploitEPSS 0.4%CVE-2024-43707HIGHKibana exposure of sensitive information to an unauthorized actorEPSS 0.4%CVE-2024-10356MEDIUMElementsReady Addons for Elementor <= 6.4.8 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor TemplatesEPSS 0.4%CVE-2023-6727LOWLeak Inaccessible Playbook Information via Channel Action IDOREPSS 0.4%CVE-2026-45192MEDIUMApache Airflow: Incomplete Redaction of Sensitive Fields in Connection Extra API ResponseEPSS 0.4%CVE-2023-44391MEDIUMPrevent unauthorized access to summary details in DiscourseEPSS 0.4%CVE-2026-24498MEDIUMExposure of Sensitive Information to an Unauthorized Actor vulnerability in EFM-Networks, Inc. IpTIME T5008, EFM-Networks, Inc. IpTIME AX200EPSS 0.4%CVE-2024-3679MEDIUMPremium SEO Pack – WP SEO Plugin <= 1.6.002 - Unauthenticated Information ExposureEPSS 0.4%CVE-2025-25951HIGHAn information disclosure vulnerability in the component /rest/cb/executeBasicSearch of Serosoft Solutions Pvt Ltd Academia Student InformatEPSS 0.4%