Fallos del tipo CWE-200

3911 resultados
CVE-2024-7416MEDIUMReveal Template <= 3.7 - Unauthenticated Full Path DisclosureEPSS 0.5%CVE-2024-24825CRITICALTokenManager not checking permissions on cached tokens in DIRACEPSS 0.5%CVE-2024-32467MEDIUMMeteraphsere vulnerable to unauthorized viewing by workspace membersEPSS 0.5%CVE-2018-6559The Linux kernel, as used in Ubuntu 18.04 LTS and Ubuntu 18.10, allows local users to obtain names of files in which they would not normallyEPSS 0.5%CVE-2025-4535MEDIUMGosuncn Technology Group Audio-Visual Integrated Management Platform Configuration File config.properties information disclosureEPSS 0.5%CVE-2025-4536MEDIUMGosuncn Technology Group Audio-Visual Integrated Management Platform listByPage information disclosureEPSS 0.5%CVE-2022-41618LOWWordPress Media Library Assistant plugin <= 3.00 - Unauthenticated Error Log Disclosure vulnerabilityEPSS 0.5%CVE-2021-3800A flaw was found in glib before version 2.63.6. Due to random charset alias, pkexec can leak content from files owned by privileged users toEPSS 0.5%CVE-2024-48310HIGHAutoLib Software Systems OPAC v20.10 was discovered to have multiple API keys exposed within the source code. Attackers may use these keys tEPSS 0.5%CVE-2021-38859MEDIUMIBM Security Verify Privilege information disclosureEPSS 0.5%CVE-2023-45066MEDIUMWordPress WP Ultimate Exporter Plugin <= 2.4.1 is vulnerable to Sensitive Data ExposureEPSS 0.5%CVE-2024-55272HIGHAn issue in Brainasoft Braina v2.8 allows a remote attacker to obtain sensitive information via the chat window function.EPSS 0.5%CVE-2018-16862MEDIUMA security flaw was found in the Linux kernel in a way that the cleancache subsystem clears an inode after the final file truncation (removaEPSS 0.5%CVE-2023-36539MEDIUMExposure of information intended to be encrypted by some Zoom clients may lead to disclosure of sensitive information.EPSS 0.5%CVE-2024-23344MEDIUMTuleap's content of artifacts might be readable by unauthorized usersEPSS 0.5%CVE-2024-6835MEDIUMIvory Search – WordPress Search Plugin <= 5.5.6 - Information Exposure via AJAX Search FormEPSS 0.5%CVE-2023-52231MEDIUMWordPress Booster Plus for WooCommerce plugin < 7.1.2 - Auth. Sensitive Data Exposure vulnerabilityEPSS 0.5%CVE-2020-29010MEDIUMAn exposure of sensitive information to an unauthorized actor vulnerability in FortiOS version 6.2.4 and below, version 6.0.10 and belowmay EPSS 0.5%CVE-2023-52234MEDIUMWordPress Booster Elite for WooCommerce plugin < 7.1.2 - Auth. Sensitive Data Exposure vulnerabilityEPSS 0.5%CVE-2025-24360MEDIUMOpening a malicious website while running a Nuxt dev server could allow read-only access to codeEPSS 0.5%