Falhas do tipo CWE-200

3.916 resultados
CVE-2025-48808MEDIUMWindows Kernel Information Disclosure VulnerabilityEPSS 0.5%CVE-2023-38700LOWmatrix-appservice-irc events can be crafted to leak parts of targeted messages from other bridged roomsEPSS 0.5%CVE-2020-11843MEDIUMPotential information leakage in administrator enabled debug modeEPSS 0.5%CVE-2023-31927MEDIUMAn information disclosure in the web interface of Brocade Fabric OSEPSS 0.5%CVE-2025-5334HIGHExposure of private personal information to an unauthorized actor in the user vaults component of Devolutions Remote Desktop Manager allows EPSS 0.5%CVE-2024-41109MEDIUMPimcore vulnerable to disclosure of system and database information behind /admin firewallEPSS 0.5%CVE-2025-32958CRITICALAdept exposed the GITHUB_TOKEN in workflow run artifactEPSS 0.5%CVE-2024-7410MEDIUMMy Custom CSS PHP & ADS <= 3.3 - Unauthenticated Full Path DisclosureEPSS 0.5%CVE-2024-7413MEDIUMObfuscate Email <= 3.8.1 - Unauthenticated Full Path DisclosureEPSS 0.5%CVE-2024-47922HIGHPriority – CWE-200: Exposure of Sensitive Information to an Unauthorized ActorEPSS 0.5%CVE-2022-39378MEDIUMDisplaying user badges can leak topic titles to users that have no access to the topicEPSS 0.5%CVE-2024-7382MEDIUMLinkify Text <= 1.9.1 - Unauthenticated Full Path DisclosureEPSS 0.5%CVE-2025-23047MEDIUMCilium vulnerable to information leakage via insecure default Hubble UI CORS headerEPSS 0.5%CVE-2025-55699MEDIUMWindows Kernel Information Disclosure VulnerabilityEPSS 0.5%CVE-2023-52187MEDIUMWordPress Image Source Control Plugin <= 2.17.0 is vulnerable to Sensitive Data ExposureEPSS 0.5%CVE-2024-42657HIGHAn issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the lack of encryEPSS 0.5%CVE-2021-24008MEDIUMAn exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE-497] in FortiDDoS version 5.4.0, version 5.EPSS 0.5%CVE-2024-50342LOWInternal address and port enumeration allowed by NoPrivateNetworkHttpClient in symfony/http-clientEPSS 0.5%CVE-2024-12578MEDIUMTickera – WordPress Event Ticketing <= 3.5.4.8 - Unauthenticated Customer Data ExposureEPSS 0.5%CVE-2023-51527MEDIUMWordPress GPT3 AI Content Writer Plugin <= 1.8.2 is vulnerable to Sensitive Data ExposureEPSS 0.5%