Falhas do tipo CWE-200
3.933 resultadosCVE-2026-22604MEDIUMOpenProject is vulnerable to user enumeration via the change password functionEPSS 0.3%CVE-2021-20320—A flaw was found in s390 eBPF JIT in bpf_jit_insn in arch/s390/net/bpf_jit_comp.c in the Linux kernel. In this flaw, a local attacker with sEPSS 0.3%CVE-2022-28638HIGHAn isolated local disclosure of information and potential isolated local arbitrary code execution vulnerability that could potentially lead EPSS 0.3%CVE-2024-23292LOWThis issue was addressed with improved data protection. This issue is fixed in iOS 17.4 and iPadOS 17.4, macOS Sonoma 14.4. An app may be abEPSS 0.3%CVE-2026-49397MEDIUMNezha Monitoring: Private services (`EnableShowInService: false`) are enumerable via per-server endpoints, leaking name and timing dataEPSS 0.3%CVE-2025-12149MEDIUMUnauthorized access to documents protected by Document-Level Security (DLS), when Signals watches include a search query involving protected documentsEPSS 0.3%CVE-2026-47379MEDIUMNocoDB: Plaintext Password Comparison in Shared ViewsEPSS 0.3%CVE-2026-29872HIGHA cross-session information disclosure vulnerability exists in the awesome-llm-apps project in commit e46690f99c3f08be80a9877fab52acacf7ab82EPSS 0.3%CVE-2026-1727CRITICALInformation Disclosure via Bucket Squatting in Google Cloud Agentspace.EPSS 0.3%CVE-2026-14611MEDIUMDeepMyst Mysti Per-Project Auto-Memory MemoryManager.ts initProjectMemory exposure of resourceEPSS 0.3%CVE-2026-6782HIGHInformation disclosure in the IP Protection componentEPSS 0.3%CVE-2026-42871MEDIUMWeGIA: Error Handling familiar_docfamiliarEPSS 0.3%CVE-2026-27131MEDIUMSprig Plugin for Craft CMS potentially discloses sensitive information via Sprig PlaygroundEPSS 0.3%CVE-2026-7542MEDIUMSlider Revolution 7.0 - 7.0.10 - Authenticated (Subscriber+) Sensitive Information DisclosureEPSS 0.3%CVE-2022-45454LOWSensitive information disclosure due to insecure folder permissions. The following products are affected: Acronis Agent (Windows) before buiEPSS 0.3%CVE-2026-44408MEDIUMUnauthorized access vulnerability in ZTE MU5250EPSS 0.3%CVE-2024-45054LOWPotential Permission Leakage of Cluster Level in hwameistorEPSS 0.3%CVE-2025-52669MEDIUMInsecure design policies in the user management system of Revive Adserver 5.5.2 and 6.0.1 and earlier versions causes non-admin users to havEPSS 0.3%CVE-2023-28826MEDIUMThis issue was addressed with improved redaction of sensitive information. This issue is fixed in iOS 16.7.6 and iPadOS 16.7.6, macOS MonterEPSS 0.3%CVE-2025-11151HIGHInformation Disclosure in Beyaz Computer's CityPLusEPSS 0.3%