Weaknesses of type CWE-200
3,933 resultsCVE-2020-27290—In Hamilton Medical AG,T1-Ventillator versions 2.2.3 and prior, an information disclosure vulnerability in the ventilator allows attackers wEPSS 0.3%CVE-2026-8995MEDIUMPoll Maker by AYS <= 6.3.7 - Authenticated (Subscriber+) Sensitive Information Exposure in 'ays_poll_get_user_information' AJAX ActionEPSS 0.3%CVE-2025-59031MEDIUMDovecot has provided a script to use for attachment to text conversion. This script unsafely handles zip-style attachments. Attacker can useEPSS 0.3%CVE-2025-31955HIGHHCL iAutomate is affected by a sensitive data exposure vulnerabilityEPSS 0.3%CVE-2022-0553MEDIUMPossible to retrieve uncrypted firmware imageEPSS 0.3%CVE-2025-15482MEDIUMChapa Payment Gateway Plugin for WooCommerce <= 1.0.3 - Unauthenticated Sensitive Information ExposureEPSS 0.3%CVE-2025-13113MEDIUMWeb Accessibility by accessiBe <= 2.11 - Unauthenticated Sensitive Information ExposureEPSS 0.3%CVE-2021-21364MEDIUMGenerated Code Contains Local Information Disclosure VulnerabilityEPSS 0.3%CVE-2024-45250MEDIUMZKteco – CWE 200 Exposure of Sensitive Information to an Unauthorized ActorEPSS 0.3%CVE-2025-3031MEDIUMJIT optimization bug with different stack slot sizesEPSS 0.3%CVE-2026-1371MEDIUMTutor LMS <= 3.9.5 - Authenticated (Subscriber+) Information Disclosure in Coupon Details via 'tutor_coupon_details' AJAX ActionEPSS 0.3%CVE-2026-45286MEDIUMNextcloud: Calendar app leaked user identifiers via attendee suggestion endpointEPSS 0.3%CVE-2024-10321MEDIUMAll-in-One Addons for Elementor – WidgetKit <= 2.5.5 - Authenticated (Contributor+) Sensitive Information Exposure via Elementor TemplatesEPSS 0.3%CVE-2022-32913LOWThe issue was addressed with additional restrictions on the observability of app states. This issue is fixed in macOS Big Sur 11.7, macOS VeEPSS 0.3%CVE-2025-57757MEDIUMContao discloses information in the news moduleEPSS 0.3%CVE-2026-53923MEDIUMvLLM GGUF Kernels: int64_t to int truncation of tensor dimensions causes GPU buffer overflowEPSS 0.3%CVE-2026-45351MEDIUMOpen WebUI: Exposure of System Prompt to Regular User [Non-Admin]EPSS 0.3%CVE-2026-21928MEDIUMVulnerability in the Oracle Solaris product of Oracle Systems (component: Kernel). The supported version that is affected is 11. Easily exEPSS 0.3%CVE-2022-23546MEDIUMDiscourse vulnerable to private topic leak via email#send_digestEPSS 0.3%CVE-2026-34090MEDIUMSuggested investigations: Handle suppressed usernamesEPSS 0.3%