Falhas do tipo CWE-200
3.916 resultadosCVE-2025-65717MEDIUMAn issue in Visual Studio Code Extensions Live Server v5.7.9 allows attackers to exfiltrate files via user interaction with a crafted HTML pEPSS 0.5%CVE-2024-12434MEDIUMSureMembers <= 1.10.6 - Sensitive Information ExposureEPSS 0.5%CVE-2023-36507MEDIUMWordPress BookingPress Plugin <= 1.0.64 is vulnerable to Sensitive Data ExposureEPSS 0.5%CVE-2023-45834MEDIUMWordPress Libsyn Publisher Hub Plugin <= 1.4.4 is vulnerable to Sensitive Data ExposureEPSS 0.5%CVE-2025-61594LOWURI Credential Leakage Bypass over CVE-2025-27221EPSS 0.5%CVE-2023-5968MEDIUMPassword hash in response body after username updateEPSS 0.5%CVE-2023-22019HIGHVulnerability in the Oracle HTTP Server product of Oracle Fusion Middleware (component: Web Listener). The supported version that is affecEPSS 0.5%CVE-2024-51163HIGHA Local File Inclusion vulnerability in Vegam Solutions Vegam 4i versions 6.3.47.0 and earlier allows a remote attacker to obtain sensitive EPSS 0.5%CVE-2024-10971MEDIUMImproper access control in the Password History feature in Devolutions DVLS 2024.3.6 and earlier allows a malicious authenticated user to obEPSS 0.5%CVE-2025-34051MEDIUMAVTECH DVR Devices Server-Side Request ForgeryEPSS 0.5%CVE-2023-48288HIGHWordPress WordPress Job Board and Recruitment Plugin – JobWP Plugin <= 2.1 is vulnerable to Sensitive Data ExposureEPSS 0.5%CVE-2026-40173CRITICALDgraph: Unauthenticated pprof endpoint leaks admin auth tokenEPSS 0.5%CVE-2024-10316MEDIUMStratum – Elementor Widgets <= 1.4.4 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor TemplatesEPSS 0.5%CVE-2020-3182MEDIUMCisco Webex Meetings Client for MacOS Information Disclosure VulnerabilityEPSS 0.5%CVE-2024-2950MEDIUMBoldGrid Easy SEO – Simple and Effective SEO <= 1.6.14 - Information ExposureEPSS 0.5%CVE-2022-41914LOWNon-constant-time SCIM token comparison in Zulip ServerEPSS 0.5%CVE-2025-23387MEDIUMRancher's SAML-based login via CLI can be denied by unauthenticated usersEPSS 0.5%CVE-2023-28901MEDIUMTrip Data Disclosure from BackendEPSS 0.5%CVE-2023-0023MEDIUMInformation Disclosure in SAP Bank Account Management (Manage Banks)EPSS 0.5%CVE-2020-1753MEDIUMA security flaw was found in Ansible Engine, all Ansible 2.7.x versions prior to 2.7.17, all Ansible 2.8.x versions prior to 2.8.11 and all EPSS 0.5%