Falhas do tipo CWE-200

3.928 resultados
CVE-2025-1063MEDIUMClassified Listing – Classified ads & Business Directory Plugin <= 4.0.4 - Unauthenticated Settings ExposureEPSS 0.3%CVE-2025-60805HIGHAn issue was discovered in BESSystem BES Application Server thru 9.5.x allowing unauthorized attackers to gain sensitive information via theEPSS 0.3%CVE-2026-56267MEDIUMFlowise - PII Disclosure via Unauthenticated Forgot Password EndpointEPSS 0.3%CVE-2025-2880MEDIUMYame | Link In Bio <= 0.9.0 - Unauthenticated Information ExposureEPSS 0.3%CVE-2025-63205HIGHAn issue was discovered in bridgetech probes VB220 IP Network Probe,VB120 Embedded IP + RF Probe, VB330 High-Capacity Probe, VB440 ST 2110 PEPSS 0.3%CVE-2026-33041MEDIUMAVideo has an Unauthenticated Password Hash Oracle via encryptPass.json.phpEPSS 0.3%CVE-2024-30135LOWSensitive Information Disclosure vulnerability affects DRYiCE AEX v10EPSS 0.3%CVE-2021-3602An information disclosure flaw was found in Buildah, when building containers using chroot isolation. Running processes in container builds EPSS 0.3%CVE-2025-23073LOWAPI list=globalblocks can reveal IP of autoblock if username and IP are included in the bgtargets parameterEPSS 0.3%CVE-2022-0516A vulnerability was found in kvm_s390_guest_sida_op in the arch/s390/kvm/kvm-s390.c function in KVM for s390 in the Linux kernel. This flaw EPSS 0.3%CVE-2025-12297MEDIUMatjiu pybbs UserApiController.java information disclosureEPSS 0.3%CVE-2024-28164MEDIUMInformation Disclosure vulnerability in SAP NetWeaver AS Java (Guided Procedures)EPSS 0.3%CVE-2024-37991MEDIUMA vulnerability has been identified in SIMATIC Reader RF610R CMIIT (6GT2811-6BC10-2AA0) (All versions < V4.2), SIMATIC Reader RF610R ETSI (6EPSS 0.3%CVE-2026-25125MEDIUMOctober CMS: Environment Variable Exfiltration via INI Parser InterpolationEPSS 0.3%CVE-2017-12315A vulnerability in system logging when replication is being configured with the Cisco HyperFlex System could allow an authenticated, local aEPSS 0.3%CVE-2020-3541MEDIUMCisco Webex Meetings Client for Windows, Webex Meetings Desktop App, and Webex Teams Information Disclosure VulnerabilityEPSS 0.3%CVE-2025-13765MEDIUMExposure of email service credentials to users without administrative rights in Devolutions Server.This issue affects Devolutions Server: beEPSS 0.3%CVE-2026-45091CRITICALsealed-env: TOTP secret embedded in unseal token payload (enterprise mode)EPSS 0.3%CVE-2026-42151HIGHPrometheus Azure AD remote write OAuth client secret exposed via config APIEPSS 0.3%CVE-2025-8676MEDIUMB Slider - Gutenberg Slider Block for WP <= 2.0.0 - Authenticated (Subscriber+) Sensitive Information ExposureEPSS 0.3%