Fallos del tipo CWE-200

3920 resultados
CVE-2024-47344MEDIUMWordPress uListing plugin <= 2.1.5 - Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2026-36539HIGHNetis AC1200 Router NC21 V4.0.1.4296 exposes a CGI endpoint /cgi-bin/skk_get.cgi that returns the entire router configuration as a JSON respEPSS 0.4%CVE-2025-9774MEDIUMRemoteClinic edit-patient.php information disclosureEPSS 0.4%CVE-2025-43323HIGHThis issue was addressed with additional entitlement checks. This issue is fixed in iOS 26 and iPadOS 26, macOS Tahoe 26, tvOS 26, visionOS EPSS 0.4%CVE-2026-7167MEDIUMMultiple vulnerabilities in the Assassin game by GaudireEPSS 0.4%CVE-2017-12284A vulnerability in the web interface of Cisco Jabber for Windows Client could allow an authenticated, local attacker to retrieve user profilEPSS 0.4%CVE-2024-13498MEDIUMNEX-Forms – Ultimate Form Builder – Contact forms and much more <= 8.8.1 - Unauthenticated Sensitive Information ExposureEPSS 0.4%CVE-2023-50872HIGHThe API in Accredible Credential.net December 6th, 2023 allows an Insecure Direct Object Reference attack that discloses partial informationEPSS 0.4%CVE-2024-47060MEDIUMUnauthorized Access After Organization or Project Deactivation in ZitadelEPSS 0.4%CVE-2025-63209HIGHThe ELCA Star Transmitter Remote Control firmware 1.25 for STAR150, BP1000, STAR300, STAR2000, STAR1000, STAR500, and possibly other models,EPSS 0.4%CVE-2023-4876HIGHExposure of Sensitive Information to an Unauthorized Actor in hamza417/inureEPSS 0.4%CVE-2025-10744MEDIUMFile Manager, Code editor, backup by Managefy <= 1.6.1 - Unauthenticated Information ExposureEPSS 0.4%CVE-2024-7063MEDIUMElementsKit Pro <= 3.6.6 - Authenticated (Contributor+) Sensitive Information ExposureEPSS 0.4%CVE-2024-53245LOWInformation Disclosure due to Username Collision with a Role that has the same Name as the UserEPSS 0.4%CVE-2025-2842MEDIUMTempo-operator: tempo operator token exposition lead to read sensitive dataEPSS 0.4%CVE-2025-32698LOWLogPager.php: Restriction enforcer functions do not correctly enforce suppression restrictionsEPSS 0.4%CVE-2025-68110CRITICALChurchCRM discloses database information on error messageEPSS 0.4%CVE-2024-49284MEDIUMWordPress WP SendFox plugin <= 1.3.1 - Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2024-5202HIGHDimensions RM - Arbitrary File ReadEPSS 0.4%CVE-2021-22783HIGHA CWE-200: Information Exposure vulnerability exists which could allow a session hijack when the door panel is communicating with the door. EPSS 0.4%