Weaknesses of type CWE-200
3,933 resultsCVE-2020-3520MEDIUMCisco Data Center Network Manager Information Disclosure VulnerabilityEPSS 0.3%CVE-2026-9352MEDIUMNousResearch hermes-agent Messaging Gateway local.py _make_run_env information disclosureEPSS 0.3%CVE-2018-15407—Cisco HyperFlex World-Readable Sensitive Information VulnerabilityEPSS 0.3%CVE-2026-44736MEDIUMOpenProject: Relations API Filter Bypasses Visibility Scope, Leaking Cross-Project Work Package SubjectsEPSS 0.3%CVE-2022-42819MEDIUMAn access issue was addressed with improved access restrictions. This issue is fixed in macOS Big Sur 11.7, macOS Ventura 13, macOS MontereyEPSS 0.3%CVE-2026-29779HIGHUptimeFlare: Montior config / Credentials in `workerConfig` exposed in client-side JavaScript bundleEPSS 0.3%CVE-2024-53243MEDIUMInformation Disclosure in Mobile Alert Responses in Splunk Secure GatewayEPSS 0.3%CVE-2023-30853HIGHGradle Build Action data written to GitHub Actions Cache may expose secretsEPSS 0.3%CVE-2024-3262MEDIUMInformation exposure vulnerability in Request Tracker (RT)EPSS 0.3%CVE-2026-5075MEDIUMAll in One SEO <= 4.9.7 - Authenticated (Contributor+) Sensitive Information Exposure via 'internalOptions' Localized Script DataEPSS 0.3%CVE-2026-2783MEDIUMInformation disclosure due to JIT miscompilation in the JavaScript Engine: JIT componentEPSS 0.3%CVE-2025-30454MEDIUMA path handling issue was addressed with improved validation. This issue is fixed in iOS 18.4 and iPadOS 18.4, macOS Sequoia 15.4, macOS SonEPSS 0.3%CVE-2025-57755HIGHclaude-code-router CORS. misconfigurationEPSS 0.3%CVE-2026-12111MEDIUMAppointment Booking Calendar <= 1.4.01 - Authenticated (Contributor+) Sensitive Information Exposure via 'id' ParameterEPSS 0.3%CVE-2025-59921MEDIUMAn exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in Fortinet FortiADC version 7.4.0, version 7.2.3 and EPSS 0.3%CVE-2025-5690MEDIUMCursor allows PostgreSQL Anonymizer masked user to gain unauthorized access to authentic dataEPSS 0.3%CVE-2025-12585MEDIUMMxChat – AI Chatbot for WordPress <= 2.5.5 - Unauthenticated Information ExposureEPSS 0.3%CVE-2026-33422LOWDiscourse exposes ip_address of flagged userEPSS 0.3%CVE-2025-46676LOWDell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions 7.7.1.0 through 8.4.0.0, LTS2025 releaseEPSS 0.3%CVE-2025-61688HIGHOmni leaks information via the APIEPSS 0.3%