Weaknesses of type CWE-200

3,933 results
CVE-2024-40793MEDIUMThis issue was addressed by removing the vulnerable code. This issue is fixed in iOS 16.7.9 and iPadOS 16.7.9, iOS 17.6 and iPadOS 17.6, macEPSS 0.3%CVE-2026-32814MEDIUMlibheif: Uninitialized Heap Memory Information Leak via Failed Grid TilesEPSS 0.3%CVE-2023-49822LOWWordPress Ultimate Dashboard plugin <= 3.7.10 - Secret Login Page Location Disclosure on Multisites vulnerabilityEPSS 0.3%CVE-2023-7320MEDIUMWooCommerce <= 7.8.2 - Sensitive Information ExposureEPSS 0.3%CVE-2026-49269HIGHApple M1 GPUs retain register file data between compute shader dispatches from different processes. A sandboxed Metal attacker app can run aEPSS 0.3%CVE-2021-32658MEDIUMSensitive data may not be removed from storage on account removalEPSS 0.3%CVE-2025-29992HIGHMahara before 24.04.9 exposes database connection information if the database becomes unreachable, e.g., due to the database server being teEPSS 0.3%CVE-2020-13179Broker Protocol messages in Teradici PCoIP Standard Agent for Windows and Graphics Agent for Windows prior to 20.04.1 are not cleaned up in EPSS 0.3%CVE-2022-42810MEDIUMThe issue was addressed with improved memory handling. This issue is fixed in iOS 15.7.1 and iPadOS 15.7.1, tvOS 16.1, iOS 16.1 and iPadOS 1EPSS 0.3%CVE-2024-7060LOWExposure of Sensitive Information to an Unauthorized Actor in GitLabEPSS 0.3%CVE-2024-37180MEDIUM[CVE-2024-37180] Information Disclosure vulnerability in SAP NetWeaver Application Server for ABAP and ABAP PlatformEPSS 0.3%CVE-2024-56526HIGHAn issue was discovered in OXID eShop before 7. CMS pages in combination with Smarty may display user information if a CMS page contains a SEPSS 0.3%CVE-2026-28976HIGHAn information leakage was addressed with additional validation. This issue is fixed in macOS Tahoe 26.5. An app may be able to gain root prEPSS 0.3%CVE-2026-5666MEDIUMcode-projects Online FIR System SQL Database Backup File complaints.sql sensitive informationEPSS 0.3%CVE-2024-39335CRITICALSupported versions of Mahara 24.04 before 24.04.1 and 23.04 before 23.04.6 are vulnerable to information being disclosed to an institution aEPSS 0.3%CVE-2025-20129MEDIUMCisco Customer Collaboration Platform Information Disclosure VulnerabilityEPSS 0.3%CVE-2026-56214HIGHCapgo - Unauthenticated Organization Enumeration and Billing Status Disclosure via Supabase RPCEPSS 0.3%CVE-2026-32099MEDIUMDiscourse prevents hidden profile data leak via user oneboxEPSS 0.3%CVE-2020-1987LOWGlobal Protect Agent: VPN cookie local information disclosureEPSS 0.3%CVE-2026-42456MEDIUMAnythingLLM: Cross-User TTS Audio Disclosure via Chat ID (IDOR)EPSS 0.3%