Weaknesses of type CWE-200

3,910 results
CVE-2022-32228MEDIUMAn information disclosure vulnerability exists in Rocket.Chat <v5, <v4.8.2 and <v4.7.5 since the getReadReceipts Meteor server method does nEPSS 0.7%CVE-2022-32229MEDIUMA information disclosure vulnerability exists in Rockert.Chat <v5 due to /api/v1/chat.getThreadsList lack of sanitization of user inputs andEPSS 0.7%CVE-2026-1194MEDIUMMineAdmin Swagger information disclosureEPSS 0.7%CVE-2022-31143MEDIUMLeak of sensitive information through login page error in GLPIEPSS 0.7%CVE-2023-23978MEDIUMWordPress WP Client Reports Plugin <= 1.0.16 is vulnerable to Sensitive Data ExposureEPSS 0.7%CVE-2023-5166HIGHDocker Desktop before 4.23.0 allows Access Token theft via a crafted extension icon URLEPSS 0.7%CVE-2024-1968HIGHAuthorization Header Leakage in scrapy/scrapy on Scheme Change RedirectsEPSS 0.7%CVE-2024-47080HIGHmatrix-js-sdk keys sent via `sendSharedHistoryKeys` vulnerable to interception by malicious homeserverEPSS 0.7%CVE-2023-44253MEDIUMAn exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in Fortinet FortiManager version 7.4.0 through 7.4.1 aEPSS 0.7%CVE-2023-37916MEDIUMLeak password hash of any userEPSS 0.7%CVE-2024-32816HIGHWordPress Combo Blocks plugin <= 2.2.78 - Sensitive Data Exposure via API vulnerabilityEPSS 0.7%CVE-2024-1643CRITICALUnauthorized Organization Access in lunary-ai/lunaryEPSS 0.7%CVE-2026-36355HIGHThe rtl8192cd Wi-Fi kernel driver in the Realtek rtl819x Jungle SDK (all known versions through v3.4.14B) does not perform any access controEPSS 0.7%CVE-2024-32726HIGHWordPress Frontend Dashboard plugin <= 2.2.2 - Sensitive Data Exposure on PII vulnerabilityEPSS 0.7%CVE-2024-32781HIGHWordPress Email Customizer for WooCommerce plugin <= 2.6.0 - Sensitive Data Exposure vulnerabilityEPSS 0.7%CVE-2024-2093MEDIUMVK All in One Expansion Unit <= 9.95.0.1 - Information ExposureEPSS 0.7%CVE-2023-6615LOWTypecho manage-users.php information disclosureEPSS 0.7%CVE-2017-20178LOWCodiad process.php saveJSON information disclosureEPSS 0.7%CVE-2023-25164HIGHSensitive Information leak via Script File in TinaCMSEPSS 0.7%CVE-2019-25210CRITICALAn issue was discovered in Cloud Native Computing Foundation (CNCF) Helm through 3.13.3. It displays values of secrets when the --dry-run flEPSS 0.7%