Fallos del tipo CWE-200

3932 resultados
CVE-2025-53840LOWIcinga DB Web Exposure of Sensitive Information to an Unauthorized Actor vulnerabilityEPSS 0.3%CVE-2026-27452CRITICALASN.1 TypeScript Library: Decoding an INTEGER could leak the underlying ArrayBufferEPSS 0.3%CVE-2025-24134MEDIUMAn information disclosure issue was addressed with improved privacy controls. This issue is fixed in macOS Sequoia 15.3. An app may be able EPSS 0.3%CVE-2025-55052MEDIUMCWE-200 Exposure of Sensitive Information to an Unauthorized ActorEPSS 0.3%CVE-2022-37909MEDIUMAruba has identified certain configurations of ArubaOS that can lead to sensitive information disclosure from the configured ESSIDs. The sceEPSS 0.3%CVE-2025-14075MEDIUMWP Hotel Booking <= 2.2.7 - Unauthenticated Sensitive Information Exposure via 'email' ParameterEPSS 0.3%CVE-2026-8026MEDIUMFlowiseAI Flowise API Response account.service.ts login information disclosureEPSS 0.3%CVE-2026-6000MEDIUMcode-projects Online Library Management System SQL Database Backup File library.sql information disclosureEPSS 0.3%CVE-2025-6745MEDIUMWoodMart <= 8.2.5 - Unauthenticated Post DisclosureEPSS 0.3%CVE-2026-5960MEDIUMcode-projects Patient Record Management System SQL Database Backup File hcpms.sql information disclosureEPSS 0.3%CVE-2026-22001LOWVulnerability in the MySQL Server product of Oracle MySQL (component: Server: Information Schema). Supported versions that are affected areEPSS 0.3%CVE-2026-5847MEDIUMcode-projects Movie Ticketing System SQL Database Backup File moviedb.sql information disclosureEPSS 0.3%CVE-2026-44786HIGHDiscourse: Public chat MessageBus broadcasts are not restricted to chat-eligible usersEPSS 0.3%CVE-2023-36476HIGH`calamares-nixos-extensions` LUKS keyfile exposureEPSS 0.3%CVE-2026-56242HIGHCapgo - Unauthenticated API Key Validity Oracle and User Identity Disclosure via get_identity_apikey_only RPCEPSS 0.3%CVE-2026-41659LOWAdmidio: Hidden Profile Field Values Leaked via Blind Search Oracle in Member AssignmentEPSS 0.3%CVE-2024-25011MEDIUMEricsson Catalog Manager and Ericsson Order Care - Exposure of Sensitive Information VulnerabilityEPSS 0.3%CVE-2025-13758LOWExposure of credentials in unintended requests in Devolutions Server.This issue affects Server: through 2025.2.20, through 2025.3.8.EPSS 0.3%CVE-2022-27576LOWInformation exposure vulnerability in Samsung DeX Home prior to SMR April-2022 Release 1 allows to access currently launched foreground app EPSS 0.3%CVE-2021-20256A flaw was found in Red Hat Satellite. The BMC interface exposes the password through the API to an authenticated local attacker with view_hEPSS 0.3%