Fallos del tipo CWE-200
3920 resultadosCVE-2023-28900MEDIUMNickname Disclosure on the Backend Automotive ServerEPSS 0.4%CVE-2024-33753HIGHSection Camera V2.5.5.3116-S50-SMA-B20160811 and earlier versions allow the accounts and passwords of administrators and users to be changedEPSS 0.4%CVE-2022-48519—Unauthorized access vulnerability in the SystemUI module. Successful exploitation of this vulnerability may affect confidentiality.EPSS 0.4%CVE-2025-53036HIGHVulnerability in the Oracle Financial Services Analytical Applications Infrastructure product of Oracle Financial Services Applications (comEPSS 0.4%CVE-2022-48520—Unauthorized access vulnerability in the SystemUI module. Successful exploitation of this vulnerability may affect confidentiality.EPSS 0.4%CVE-2024-31464MEDIUMXWiki Platform: Password hash might be leaked by diff once the xobject holding them is deletedEPSS 0.4%CVE-2025-0659HIGHPath Traversal and Rockwell Automation Third-party Vulnerability in DataMosaix™ Private CloudEPSS 0.4%CVE-2026-7526MEDIUMPDF Embedder <= 4.9.3 - Authenticated (Contributor+) Information Exposure via Block Editor PageEPSS 0.4%CVE-2024-20937MEDIUMVulnerability in the JD Edwards EnterpriseOne Tools product of Oracle JD Edwards (component: Monitoring and Diagnostics SEC). Supported verEPSS 0.4%CVE-2025-0441MEDIUMInappropriate implementation in Fenced Frames in Google Chrome prior to 132.0.6834.83 allowed a remote attacker to obtain potentially sensitEPSS 0.4%CVE-2017-15112—keycloak-httpd-client-install versions before 0.8 allow users to insecurely pass password through command line, leaking it via command histoEPSS 0.4%CVE-2026-39007HIGHAn issue in Observeinc's Observe v.2026-01-28 and before allows a remote attacker to obtain sensitive information via the CSV Log export comEPSS 0.4%CVE-2024-20904MEDIUMVulnerability in the Oracle Business Intelligence Enterprise Edition product of Oracle Analytics (component: Pod Admin). Supported versionsEPSS 0.4%CVE-2025-36601MEDIUMDell PowerScale OneFS, versions 9.5.0.0 through 9.11.0.0, contains an exposure of sensitive information to an unauthorized actor vulnerabiliEPSS 0.4%CVE-2020-7284HIGHNetwork Security Management (NSM) - Exposure of Sensitive InformationEPSS 0.4%CVE-2023-21833MEDIUMVulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: Object Store). The supported version that is aEPSS 0.4%CVE-2022-41913MEDIUMDiscourse-calendar exposes members of hidden groupsEPSS 0.4%CVE-2026-24422MEDIUMphpMyFAQ: Public API endpoints expose emails and invisible questionsEPSS 0.4%CVE-2026-1980MEDIUMWPBookit <= 1.0.8 - Missing Authorization to Unauthenticated Sensitive Customer Data ExposureEPSS 0.4%CVE-2025-57430HIGHCreacast Creabox Manager 4.4.4 exposes sensitive configuration data via a publicly accessible endpoint /get. When accessed, this endpoint reEPSS 0.4%