Falhas do tipo CWE-200
3.916 resultadosCVE-2020-11843MEDIUMPotential information leakage in administrator enabled debug modeEPSS 0.5%CVE-2025-63891HIGHInformation Disclosure in web-accessible backup file in SourceCodester Simple Online Book Store System allows a remote unauthenticated attacEPSS 0.5%CVE-2025-5334HIGHExposure of private personal information to an unauthorized actor in the user vaults component of Devolutions Remote Desktop Manager
allows EPSS 0.5%CVE-2024-41109MEDIUMPimcore vulnerable to disclosure of system and database information behind /admin firewallEPSS 0.5%CVE-2025-32958CRITICALAdept exposed the GITHUB_TOKEN in workflow run artifactEPSS 0.5%CVE-2023-36817HIGHThe King's Temple Church website Leaked Stripe API Key in Public Code RepositoryEPSS 0.5%CVE-2024-7413MEDIUMObfuscate Email <= 3.8.1 - Unauthenticated Full Path DisclosureEPSS 0.5%CVE-2024-47922HIGHPriority – CWE-200: Exposure of Sensitive Information to an Unauthorized ActorEPSS 0.5%CVE-2024-7410MEDIUMMy Custom CSS PHP & ADS <= 3.3 - Unauthenticated Full Path DisclosureEPSS 0.5%CVE-2022-39378MEDIUMDisplaying user badges can leak topic titles to users that have no access to the topicEPSS 0.5%CVE-2024-7382MEDIUMLinkify Text <= 1.9.1 - Unauthenticated Full Path DisclosureEPSS 0.5%CVE-2025-23047MEDIUMCilium vulnerable to information leakage via insecure default Hubble UI CORS headerEPSS 0.5%CVE-2025-55699MEDIUMWindows Kernel Information Disclosure VulnerabilityEPSS 0.5%CVE-2021-24008MEDIUMAn exposure of sensitive system information to an unauthorized control sphere vulnerability [CWE-497] in FortiDDoS version 5.4.0, version 5.EPSS 0.5%CVE-2024-42657HIGHAn issue in wishnet Nepstech Wifi Router NTPL-XPON1GFEVN v1.0 allows a remote attacker to obtain sensitive information via the lack of encryEPSS 0.5%CVE-2023-52187MEDIUMWordPress Image Source Control Plugin <= 2.17.0 is vulnerable to Sensitive Data ExposureEPSS 0.5%CVE-2024-50342LOWInternal address and port enumeration allowed by NoPrivateNetworkHttpClient in symfony/http-clientEPSS 0.5%CVE-2024-12578MEDIUMTickera – WordPress Event Ticketing <= 3.5.4.8 - Unauthenticated Customer Data ExposureEPSS 0.5%CVE-2022-41946MEDIUMTemporaryFolder on unix-like systems does not limit access to created files in pgjdbcEPSS 0.5%CVE-2023-51527MEDIUMWordPress GPT3 AI Content Writer Plugin <= 1.8.2 is vulnerable to Sensitive Data ExposureEPSS 0.5%