Fallos del tipo CWE-200
3916 resultadosCVE-2023-49162MEDIUMWordPress BigCommerce Plugin <= 5.0.6 is vulnerable to Sensitive Data ExposureEPSS 0.4%CVE-2022-36399MEDIUMWordPress Booked Plugin < 2.4.4 is vulnerable to Sensitive Data ExposureEPSS 0.4%CVE-2024-8516MEDIUMThemesflat Addons For Elementor <= 2.2.1 - Authenticated (Contributor+) Information ExposureEPSS 0.4%CVE-2023-44115HIGHVulnerability of improper permission control in the Booster module. Impact: Successful exploitation of this vulnerability may affect serviceEPSS 0.4%CVE-2024-37504MEDIUMWordPress FileBird Document Library plugin <= 2.0.6 - Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2024-1436MEDIUMWordPress WooCommerce Coupon Popup, SmartBar, Slide In | MyShopKit Plugin <= 1.0.9 is vulnerable to Sensitive Data ExposureEPSS 0.4%CVE-2021-37939—It was discovered that Kibana’s JIRA connector & IBM Resilient connector could be used to return HTTP response data on internal hosts, whichEPSS 0.4%CVE-2025-32953HIGHz80pack Vulnerable to Exposure of the GITHUB_TOKEN in Workflow Run ArtifactEPSS 0.4%CVE-2024-8483MEDIUMMAS Static Content <= 1.0.8 - Authenticated (Contributor+) Private Static Content Page DisclosureEPSS 0.4%CVE-2024-33506LOWAn exposure of sensitive information to an unauthorized actor vulnerability [CWE-200] in FortiManager 7.4.2 and below, 7.2.5 and below, 7.0.EPSS 0.4%CVE-2026-7381CRITICALPlack::Middleware::XSendfile versions through 1.0053 for Perl can allow client-controlled path rewritingEPSS 0.4%CVE-2023-5134MEDIUMEasy Registration Forms <= 2.1.1 - Authenticated (Subscriber+) Information Disclosure via ShortcodeEPSS 0.4%CVE-2024-38970MEDIUMvaeThink 1.0.2 is vulnerable to Information Disclosure via the system backend,access management administrator function.EPSS 0.4%CVE-2023-48296MEDIUMOroPlatform's storefront user can access history and most viewed data from matching back-office user with the same IDEPSS 0.4%CVE-2024-11292MEDIUMWP Private Content Plus <= 3.6.1 - Unauthenticated Content Restriction Bypass to Sensitive Information ExposureEPSS 0.4%CVE-2024-35776MEDIUMWordPress phpinfo() WP plugin <= 5.0 - Unauthenticated Data Exposure vulnerabilityEPSS 0.4%CVE-2022-3501LOWInformation exposure of template content due to missing check of permissionsEPSS 0.4%CVE-2023-45824MEDIUMOroPlatform's pinned entity creation form shows pages of other usersEPSS 0.4%CVE-2025-59405HIGHThe Flock Safety Peripheral com.flocksafety.android.peripheral application 7.38.3 for Android (installed on Falcon and Sparrow License PlateEPSS 0.4%CVE-2023-48957MEDIUMPureVPN Linux client 2.0.2-Productions fails to properly handle DNS queries, allowing them to bypass the VPN tunnel and be sent directly to EPSS 0.4%