Falhas do tipo CWE-200
3.859 resultadosCVE-2024-5010HIGHWhatsUp Gold TestController multiple information disclosure vulnerabilitiesEPSS 70.0%CVE-2023-50290MEDIUMApache Solr: Host environment variables are published via the Metrics APIEPSS 68.7%CVE-2024-0305MEDIUMGuangzhou Yingke Electronic Technology Ncast Guest Login IPSetup.php information disclosureEPSS 66.9%CVE-2025-4901MEDIUMD-Link DI-7003GV2 HTTP Endpoint state_view.data sub_41E304 information disclosureEPSS 63.8%CVE-2016-0777MEDIUMThe resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitEPSS 63.5%CVE-2023-50968—Apache OFBiz: Arbitrary file properties reading and SSRF attackEPSS 63.4%CVE-2025-31125MEDIUMVite has a `server.fs.deny` bypassed for `inline` and `raw` with `?import` queryEPSS 62.1%KEVCVE-2021-32819HIGHRemote code execution in squirrellyEPSS 59.8%CVE-2023-50720MEDIUMXWiki Platform Solr search discloses email addresses of usersEPSS 59.1%CVE-2023-28770HIGHThe sensitive information exposure vulnerability in the CGI “Export_Log” and the binary “zcmd” in Zyxel DX5401-B0 firmware versions prior toEPSS 57.8%CVE-2024-45388HIGHArbitrary file read in the `/api/v2/simulation` endpoint in hoverfly (`GHSL-2023-274`)EPSS 55.9%CVE-2024-31817HIGHIn TOTOLINK EX200 V4.0.3c.7646_B20201211, an attacker can obtain sensitive information without authorization through the function getSysStatEPSS 55.3%CVE-2012-6441—Rockwell Automation ControlLogix PLC Information ExposureEPSS 54.2%CVE-2020-12027MEDIUMRockwell Automation FactoryTalk View SEEPSS 53.0%CVE-2024-42010HIGHmod_css_styles in Roundcube through 1.5.7 and 1.6.x through 1.6.7 insufficiently filters Cascading Style Sheets (CSS) token sequences in renEPSS 52.8%CVE-2016-2388MEDIUMThe Universal Worklist Configuration in SAP NetWeaver AS JAVA 7.4 allows remote attackers to obtain sensitive user information via a craftedEPSS 51.6%KEVCVE-2024-38030MEDIUMWindows Themes Spoofing VulnerabilityEPSS 51.4%CVE-2018-5430HIGHTIBCO JasperReports Server Information Disclosure VulnerabilityEPSS 48.8%KEVCVE-2024-46938HIGHAn issue was discovered in Sitecore Experience Platform (XP), Experience Manager (XM), and Experience Commerce (XC) 8.0 Initial Release throEPSS 46.1%CVE-2024-6646MEDIUMNetgear WN604 Web Interface downloadFile.php information disclosureEPSS 46.0%