Weaknesses of type CWE-200
3,910 resultsCVE-2026-20932MEDIUMWindows File Explorer Information Disclosure VulnerabilityEPSS 0.7%CVE-2026-45539HIGHMicrosoft APM: Symlinks under `.apm/prompts/` and `.apm/agents/` are dereferenced during `apm install`, copying host-local file contents into the project treeEPSS 0.7%CVE-2026-20823MEDIUMWindows File Explorer Information Disclosure VulnerabilityEPSS 0.7%CVE-2022-35290HIGHUnder certain conditions SAP Authenticator for Android allows an attacker to access information which would otherwise be restricted.EPSS 0.7%CVE-2022-42883MEDIUMWordPress Quiz And Survey Master plugin <= 7.3.10 - Sensitive Information Disclosure vulnerabilityEPSS 0.7%CVE-2020-11447—An issue was discovered on Bell HomeHub 3000 SG48222070 devices. Remote authenticated users can retrieve the serial number via cgi/json-req EPSS 0.7%CVE-2022-38113MEDIUMInformation Disclosure Vulnerability EPSS 0.7%CVE-2023-27870MEDIUMIBM Spectrum Virtualize information disclosureEPSS 0.7%CVE-2025-34220MEDIUMVasion Print (formerly PrinterLogic) Unauthenticated API Leaks Group InformationEPSS 0.7%CVE-2021-3413—A flaw was found in Red Hat Satellite in tfm-rubygem-foreman_azure_rm in versions before 2.2.0. A credential leak was identified which will EPSS 0.7%CVE-2026-49336MEDIUM@microsoft/kiota-http-fetchlibrary: Bearer token and Cookie leak across origin on redirect due to case-mismatched scrub in fetchRequestAdapterEPSS 0.7%CVE-2021-32787LOWLow risk information disclosure in SourcegraphEPSS 0.6%CVE-2023-44991MEDIUMWordPress Media File Renamer Plugin <= 5.6.9 is vulnerable to Sensitive Data ExposureEPSS 0.6%CVE-2023-33955MEDIUMMinio console object names with RIGHT-TO-LEFT OVERRIDE unicode character can be exploitedEPSS 0.6%CVE-2024-28120MEDIUMAPI key leak in codeium-chromeEPSS 0.6%CVE-2022-22745MEDIUMSecuritypolicyviolation events could have leaked cross-origin information for frame-ancestors violations. This vulnerability affects FirefoxEPSS 0.6%CVE-2024-26119MEDIUMAdobe Experience Manager | Information Exposure (CWE-200)EPSS 0.6%CVE-2024-38647HIGHQNAP AI CoreEPSS 0.6%CVE-2024-25917HIGHWordPress WP Setup Wizard plugin <= 1.0.8.1 - Auth. Full Database Download VulnerabilityEPSS 0.6%CVE-2024-33669MEDIUMAn issue was discovered in Passbolt Browser Extension before 4.6.2. It can send multiple requests to HaveIBeenPwned while a password is beinEPSS 0.6%