Fallos del tipo CWE-200

3929 resultados
CVE-2025-5266MEDIUMScript element events leaked cross-origin resource statusEPSS 0.3%CVE-2024-44179LOWThis issue was addressed by restricting options offered on a locked device. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadEPSS 0.3%CVE-2025-52026HIGHAn information disclosure vulnerability exists in the /srvs/membersrv/getCashiers endpoint of the Aptsys gemscms backend platform thru 2025-EPSS 0.3%CVE-2025-6600MEDIUMGitHub Enterprise Server Information Disclosure Vulnerability Exposes Private Repository Names via Search APIEPSS 0.3%CVE-2025-56467MEDIUMAn issue was discovered in AXIS BANK LIMITED Axis Mobile App 9.9 that allows attackers to obtain sensitive information without a UPI PIN, suEPSS 0.3%CVE-2025-43018MEDIUMCertain HP LaserJet Pro Printers – Potential Information DisclosureEPSS 0.3%CVE-2025-61589MEDIUMCursor: Potential Information Leakage via Mermaid DiagramEPSS 0.3%CVE-2026-26964LOWWindmill Exposes Workspace Slack OAuth Client Secrets to Non-Admin Workspace MembersEPSS 0.3%CVE-2025-61906LOWOpencast's editor accidentally publishes videos/overwrites publications #1626EPSS 0.3%CVE-2025-64179MEDIUMlakeFS: Unauthenticated access to API usage metricsEPSS 0.3%CVE-2026-22203MEDIUMwpDiscuz before 7.6.47 - Options Export Leaks OAuth Secrets in PlaintextEPSS 0.3%CVE-2026-56235MEDIUMCapgo - Unauthenticated Cross-Tenant Metrics Disclosure via RPC FunctionsEPSS 0.3%CVE-2023-4886MEDIUMForeman: world readable file containing secretsEPSS 0.3%CVE-2026-2128MEDIUMBreeze Cache <= 2.5.2 - Unauthenticated Exposure of Sensitive Information to an Unauthorized Actor via Crafted Login CookieEPSS 0.3%CVE-2024-40850MEDIUMA file access issue was addressed with improved input validation. This issue is fixed in iOS 17.7 and iPadOS 17.7, iOS 18 and iPadOS 18, macEPSS 0.3%CVE-2021-20259A flaw was found in the Foreman project. The Proxmox compute resource exposes the password through the API to an authenticated local attackeEPSS 0.3%CVE-2025-4593MEDIUMWP Register Profile With Shortcode <= 3.6.2 - Authenticated (Contributor+) Sensitive Information ExposureEPSS 0.3%CVE-2025-12785MEDIUMCertain HP LaserJet Pro Printers – Potential Information DisclosureEPSS 0.3%CVE-2024-27814LOWThis issue was addressed through improved state management. This issue is fixed in watchOS 10.5. A person with physical access to a device mEPSS 0.3%CVE-2025-4659MEDIUMIntegration for Salesforce and Contact Form 7, WPForms, Elementor, Formidable, Ninja Forms <= 1.4.4 - Unauthenticated Full Path DisclosureEPSS 0.3%