Fallos del tipo CWE-204
159 resultadosCVE-2026-31888MEDIUMShopware has user enumeration via distinct error codes on Store API login endpointEPSS 0.2%CVE-2026-43926MEDIUMFOSSBilling's password reset confirmation endpoint lacks rate limitingEPSS 0.2%CVE-2025-25236MEDIUMOmnissa Workspace ONE UEM contains an observable response discrepancy vulnerability. A malicious actor may be able to enumerate sensitive inEPSS 0.2%CVE-2025-59116MEDIUMUser enumeration in Windu CMSEPSS 0.2%CVE-2026-45294MEDIUMFreeScout: User Account Enumeration via Password Reset Response DifferentiationEPSS 0.2%CVE-2026-44306MEDIUMStatamic: Email enumeration via forgot password endpointEPSS 0.2%CVE-2026-53947MEDIUMGhost: Member existence leak via magic link sign-in responseEPSS 0.2%CVE-2026-30876MEDIUMChamilo LMS: User enumeration vulnerability via responseEPSS 0.2%CVE-2026-45620MEDIUMAVideo CVE-2026-43881 incomplete fix - `objects/mention.json.php:17` is an unauthenticated user enumerationEPSS 0.2%CVE-2023-50306MEDIUMIBM Common Licensing information disclosureEPSS 0.2%CVE-2026-2859MEDIUMUnauthenticated Host Enumeration via Observable Response Discrepancy on Deploy Agent EndpointEPSS 0.2%CVE-2025-67500LOWMastodon Error Handling Discrepancy Enables Private Status Existence EnumerationEPSS 0.2%CVE-2024-0391MEDIUMUsername Enumeration via Email OTP Flow in Multiple WSO2 Products Allows User Account DiscoveryEPSS 0.2%CVE-2024-31870LOWIBM i information disclosureEPSS 0.2%CVE-2025-3716MEDIUMUser enumeration in ESET Protect (on-prem)EPSS 0.2%CVE-2026-34319MEDIUMVulnerability in the MySQL Shell product of Oracle MySQL (component: Shell: Core Client). Supported versions that are affected are 8.0.0-8.EPSS 0.2%CVE-2025-67807MEDIUMThe login mechanism of Sage DPW 2025_06_004 displays distinct responses for valid and invalid usernames, allowing enumeration of existing acEPSS 0.1%CVE-2024-41715MEDIUMgoTenna Pro ATAK Plugin Observable Response DiscrepancyEPSS 0.1%CVE-2024-47129MEDIUMObservable Response Discrepancy in goTenna ProEPSS 0.1%