Weaknesses of type CWE-200
3,924 resultsCVE-2025-26009HIGHTelesquare TLR-2005KSH 1.1.4 has an Information Disclosure vulnerability when requesting systemutilit.cgi.EPSS 0.4%CVE-2025-2331MEDIUMGiveWP – Donation Plugin and Fundraising Platform <= 3.22.1 - Authenticated (Subscriber+) Sensitive Information ExposureEPSS 0.4%CVE-2024-43319MEDIUMWordPress HTML5 Video Player plugin <= 2.5.31 - Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2024-32506MEDIUMWordPress Radio Player plugin <= 2.0.73 - Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2023-44112HIGHOut-of-bounds access vulnerability in the device authentication module. Successful exploitation of this vulnerability may affect confidentiaEPSS 0.4%CVE-2025-20336MEDIUMCisco Desk Phone 9800 Series, IP Phone 7800 and 8800 Series, and Video Phone 8875 with SIP Firmware Information Disclosure VulnerabilityEPSS 0.3%CVE-2024-12584MEDIUM140+ Widgets | Xpro Addons For Elementor – FREE <= 1.4.6.2 - Authenticated (Contributor+) Post Disclosure via Post DuplicationEPSS 0.3%CVE-2026-56300HIGHCapgo - Unauthenticated API Key Validity and Permission Oracle via RPC FunctionsEPSS 0.3%CVE-2025-53043HIGHVulnerability in the Oracle Product Hub product of Oracle E-Business Suite (component: Item Catalog). Supported versions that are affected EPSS 0.3%CVE-2025-27604HIGHXWiki Confluence Migrator Pro's homepage is publicEPSS 0.3%CVE-2024-2740HIGHExposure of Sensitive Information to an Unauthorized Actor in Planet IGS-4215-16T2SEPSS 0.3%CVE-2025-2881MEDIUMDeveloper Toolbar <= 1.0.3 - Unauthenticated Information ExposureEPSS 0.3%CVE-2024-45805MEDIUMOpenCTI leaks support information due to inadequate access controlEPSS 0.3%CVE-2025-49593MEDIUMPortainer HTTP Headers May Leak to Malicious Container RegistriesEPSS 0.3%CVE-2020-4927MEDIUMIBM Spectrum Scale information disclosureEPSS 0.3%CVE-2024-23228MEDIUMThis issue was addressed through improved state management. This issue is fixed in iOS 17.3 and iPadOS 17.3. Locked Notes content may have bEPSS 0.3%CVE-2024-23557LOWHCL Connections is vulnerable to a user enumeration vulnerabilityEPSS 0.3%CVE-2026-40965CRITICALCloud Foundry UAA versions v76.12.0 through v78.12.0 are vulnerable to a private key exposure. The server contains a vulnerability where EC EPSS 0.3%CVE-2026-41266HIGHFlowise: Sensitive Data Leak in public-chatbotConfigEPSS 0.3%CVE-2026-21940HIGHVulnerability in the Oracle Agile PLM product of Oracle Supply Chain (component: User and User Group). The supported version that is affecEPSS 0.3%