Fallos del tipo CWE-200
3951 resultadosCVE-2026-57994MEDIUMphpMyFAQ - Information Disclosure of Inactive FAQ Content via Public API EndpointsEPSS —CVE-2026-45788MEDIUMDiscourse: Secure uploads exposed by hotlinked image copyingEPSS —CVE-2026-15329MEDIUMzhayujie CowAgent Browser Tool browser_tool.py BrowserTool._do_navigate information disclosureEPSS —CVE-2026-55882HIGHTilt: Unauthenticated pprof debug endpoints on the Tilt HUD serverEPSS —CVE-2026-55664MEDIUMGrist: Insufficient access control in the /forms endpoint exposes table metadataEPSS —CVE-2026-45780MEDIUMDiscourse: Private event sample invitees are serialized to non-invited event viewersEPSS —CVE-2026-59828MEDIUMDiscourse: Hidden post revisions leak through adjacent visible diffsEPSS —CVE-2026-55500CRITICAL9router: Exposure of Sensitive Information and Unprotected Database Import/Export Allows Complete Credential Theft and Database TakeoverEPSS —CVE-2026-59216HIGHOpen WebUI: Cross-user code-interpreter and tool execution via unvalidated Socket.IO event-caller session_idEPSS —CVE-2026-57474MEDIUMDeloitte AI Assist for Customer information disclosureEPSS —CVE-2026-59155MEDIUMNezha Monitoring: DDNS and Notification credential exposure via unredacted list APIEPSS —