Weaknesses of type CWE-200

3,933 results
CVE-2026-1267MEDIUMIBM Planning Analytics Information DisclosureEPSS 0.3%CVE-2024-20910LOWVulnerability in Oracle Audit Vault and Database Firewall (component: Firewall). Supported versions that are affected are 20.1-20.9. DifficEPSS 0.3%CVE-2025-54425MEDIUMUmbraco's Delivery API allows for cached requests to be returned with an invalid API keyEPSS 0.3%CVE-2025-54133MEDIUMCursor's MCP Install Deeplink Does Not Show Arguments in its User-DialogEPSS 0.3%CVE-2023-24011HIGHData Distribution Service (DDS) Chain of Trust (CoT) violation vulnerability in Cyclone DDSEPSS 0.3%CVE-2025-29270CRITICALIncorrect access control in the realtime.cgi endpoint of Deep Sea Electronics devices DSE855 v1.1.0 to v1.1.26 allows attackers to gain acceEPSS 0.3%CVE-2019-18947LOWinformation disclosureEPSS 0.3%CVE-2024-6398MEDIUMAn information disclosure vulnerability in SWG in versions 12.x prior to 12.2.10 and 11.x prior to 11.2.24 allows information stored in a cuEPSS 0.3%CVE-2026-10254MEDIUMSourceCodester Pet Grooming Management Software admin file information disclosureEPSS 0.3%CVE-2022-48430MEDIUMIn JetBrains IntelliJ IDEA before 2023.1 file content could be disclosed via an external stylesheet path in Markdown preview.EPSS 0.3%CVE-2026-56267MEDIUMFlowise - PII Disclosure via Unauthenticated Forgot Password EndpointEPSS 0.3%CVE-2024-41694MEDIUMCybonet – CWE-200: Exposure of Sensitive Information to an Unauthorized ActorEPSS 0.3%CVE-2023-28010MEDIUMHCL Domino is susceptible to a sensitive information disclosure vulnerabilityEPSS 0.3%CVE-2025-26604HIGHPossibility to retrieve bot token by malicious module developers in Discord-Bot-Framework-KernelEPSS 0.3%CVE-2025-1063MEDIUMClassified Listing – Classified ads & Business Directory Plugin <= 4.0.4 - Unauthenticated Settings ExposureEPSS 0.3%CVE-2025-60805HIGHAn issue was discovered in BESSystem BES Application Server thru 9.5.x allowing unauthorized attackers to gain sensitive information via theEPSS 0.3%CVE-2025-2880MEDIUMYame | Link In Bio <= 0.9.0 - Unauthenticated Information ExposureEPSS 0.3%CVE-2025-23073LOWAPI list=globalblocks can reveal IP of autoblock if username and IP are included in the bgtargets parameterEPSS 0.3%CVE-2024-30135LOWSensitive Information Disclosure vulnerability affects DRYiCE AEX v10EPSS 0.3%CVE-2021-3602An information disclosure flaw was found in Buildah, when building containers using chroot isolation. Running processes in container builds EPSS 0.3%