Fallos del tipo CWE-200
3916 resultadosCVE-2024-34005MEDIUMmoodle: authenticated LFI risk in some misconfigured shared hosting environments via modified mod_data backupEPSS 0.5%CVE-2020-36771HIGHCloudLinux CageFS 7.1.1-1 or below passes the authentication token as a command line argument. In some configurations this allows local userEPSS 0.5%CVE-2022-43573LOWIBM Robotic Process Automation information disclosureEPSS 0.5%CVE-2023-42888MEDIUMThe issue was addressed with improved checks. This issue is fixed in iOS 16.7.5 and iPadOS 16.7.5, watchOS 10.2, macOS Ventura 13.6.4, macOSEPSS 0.5%CVE-2022-48346—The HwContacts module has a logic bypass vulnerability. Successful exploitation of this vulnerability may affect confidentiality.EPSS 0.5%CVE-2026-32633CRITICALGlances's Browser API Exposes Reusable Downstream Credentials via `/api/4/serverslist`EPSS 0.5%CVE-2021-3688—A flaw was found in Red Hat JBoss Core Services HTTP Server in all versions, where it does not properly normalize the path component of a reEPSS 0.5%CVE-2024-13622HIGHFile Uploads Addon for WooCommerce <= 1.7.1 - Unauthenticated Sensitive Information Exposure Through Unprotected DirectoryEPSS 0.5%CVE-2024-10050MEDIUMElementor Header & Footer Builder <= 1.6.43 - Authenticated (Contributor+) Information Disclosure via ShortcodeEPSS 0.5%CVE-2024-25114LOWSensitive Information Disclosure (JailID) to users in Collabora OnlineEPSS 0.5%CVE-2024-24720MEDIUMAn issue was discovered in the Forgot password function in Innovaphone PBX before 14r1 devices. It provides information about whether a userEPSS 0.5%CVE-2025-24263CRITICALA privacy issue was addressed by moving sensitive data to a protected location. This issue is fixed in macOS Sequoia 15.4. An app may be ablEPSS 0.5%CVE-2023-3361HIGHS3 credentials included when exporting elyra notebookEPSS 0.5%CVE-2024-31302MEDIUMWordPress Contact Form Email plugin <= 1.3.44 - Sensitive Data Exposure vulnerabilityEPSS 0.5%CVE-2024-10965MEDIUMemqx neuron JSON File schema information disclosureEPSS 0.5%CVE-2024-34358MEDIUMTYPO3 vulnerable to an Uncontrolled Resource Consumption in the ShowImageControllerEPSS 0.5%CVE-2024-34382MEDIUMWordPress Photo Gallery, Images, Slider in Rbs Image Gallery plugin <= 3.2.18 - Sensitive Data Exposure vulnerabilityEPSS 0.5%CVE-2021-39190MEDIUMSCCM plugin for GLPI vulnerable to Exposure of Sensitive Information to an Unauthorized ActorEPSS 0.5%CVE-2025-29629CRITICALGardyn Home Kit firmware before master.619, Home Kit Mobile Application before 2.11.0, and Home Kit Cloud API before 2.12.2026 use weak defaEPSS 0.5%CVE-2022-27490MEDIUMA exposure of sensitive information to an unauthorized actor in Fortinet FortiManager version 6.0.0 through 6.0.4, FortiAnalyzer version 6.0EPSS 0.5%