Fallos del tipo CWE-200
3916 resultadosCVE-2024-39182HIGHAn information disclosure vulnerability in ISPmanager v6.98.0 allows attackers to access sensitive details of the root user's session via anEPSS 0.4%CVE-2022-48348CRITICALThe MediaProvider module has a vulnerability of unauthorized data read. Successful exploitation of this vulnerability may affect confidentiaEPSS 0.4%CVE-2025-7919HIGHSimopro Technology|WinMatrix3 Web package - SQL InjectionEPSS 0.4%CVE-2024-35691MEDIUMWordPress Widget Options - Extended plugin <= 5.1.0 - Multiple Data Exposure VulnerabilityEPSS 0.4%CVE-2022-48347—The MediaProvider module has a vulnerability in permission verification. Successful exploitation of this vulnerability may affect confidentiEPSS 0.4%CVE-2026-33163HIGHParse Server leaks protected fields via LiveQuery afterEvent triggerEPSS 0.4%CVE-2024-27113CRITICALInsecure Direct Object Reference to export Database in SOPlanning before 1.52.02EPSS 0.4%CVE-2022-39397MEDIUMExposure of sensitive information in aliyun-oss-clientEPSS 0.4%CVE-2026-41278HIGHFlowise: Public chatflow endpoints return unsanitized flowData including plaintext API keys, passwords, and credential IDsEPSS 0.4%CVE-2022-2739—The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman EPSS 0.4%CVE-2022-36075LOWFile list exposure in Nextcloud Files Access ControlEPSS 0.4%CVE-2024-6336MEDIUMSecurity misconfiguration was identified in GitHub Enterprise Server that allowed sensitive data exposureEPSS 0.4%CVE-2023-1831HIGHUser password logged in audit logsEPSS 0.4%CVE-2025-15625CRITICALUnauthenticated execution of arbitrary SQL queries in Sparx Pro Cloud ServerEPSS 0.4%CVE-2024-37150HIGHPrivate npm registry support used scope auth token for downloading tarballsEPSS 0.4%CVE-2024-24817MEDIUMUser can see invitees in events created in PMs and private categoriesEPSS 0.4%CVE-2023-38718LOWIBM Robotic Process Automation information disclosureEPSS 0.4%CVE-2023-50950LOWIBM QRadar information disclosureEPSS 0.4%CVE-2025-55679MEDIUMWindows Kernel Information Disclosure VulnerabilityEPSS 0.4%CVE-2025-50708HIGHAn issue in Perplexity AI GPT-4 v.2.51.0 allows a remote attacker to obtain sensitive information via the token component in the shared chatEPSS 0.4%