CWE-200 (信息暴露) — Vulnerability Class 2723

2723 vulnerabilities classified as CWE-200 (信息暴露). AI Chinese analysis included.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-57757	Contao discloses information in the news module — contao	5.3	Medium	2025-08-28
CVE-2025-57756	Contao discloses sensitive information in the front end search index — contao	5.3	Medium	2025-08-28
CVE-2024-13807	Xagio SEO <= 7.1.0.5 - Unauthenticated Sensitive Information Exposure via Unprotected Back-Up Files — Xagio SEO – AI Powered SEO	7.5	High	2025-08-28
CVE-2025-20290	Cisco NXOS Software Sensitive Log Information Disclosure Vulnerability — Cisco NX-OS Software	5.5	Medium	2025-08-27
CVE-2025-9461	diyhi bbs File Compression FilePackageManageAction.java information disclosure — bbs	4.3	Medium	2025-08-26
CVE-2025-7426	MINOVA TTA Information Disclosure and Credential Exposure — TTA	9.8^AI	Critical^AI	2025-08-25
CVE-2025-9398	YiFang CMS Migrate.php exportInstallTable information disclosure — CMS	5.3	Medium	2025-08-24
CVE-2025-9381	FNKvision Y215 CCTV Camera wpa_supplicant.conf information disclosure — Y215 CCTV Camera	1.6	Low	2025-08-24
CVE-2025-57755	claude-code-router CORS. misconfiguration — claude-code-router	9.8^AI	Critical^AI	2025-08-21
CVE-2025-9240	elunez eladmin info information disclosure — eladmin	4.3	Medium	2025-08-20
CVE-2025-20345	Cisco Duo Authentication Proxy Information Disclosure Vulnerability — Cisco Duo Authentication Proxy	4.9	Medium	2025-08-20
CVE-2025-8448	Schneider Electric EcoStruxure Building Operation Enterprise Server和Schneider Electric EcoStruxure Enterprise Server 信息泄露漏洞 — EcoStruxure Building Operation Enterprise Server	5.7	-	2025-08-20
CVE-2025-9139	Scada-LTS WatchListDwr.init.dwr information disclosure — Scada-LTS	4.3	Medium	2025-08-19
CVE-2025-7654	Multiple Plugins By FunnelKit <= (Various Versions) - Authenticated (Contributor+) Sensitive Information Exposure to Privilege Escalation via Woofunnel Library — FunnelKit Automations – Email Marketing Automation and CRM for WordPress & WooCommerce	8.8	High	2025-08-19
CVE-2025-54118	NamelessMC allows sensitive information disclosure in member list component — Nameless	5.3	Medium	2025-08-18
CVE-2024-12575	Poll Maker – Versus Polls, Anonymous Polls, Image Polls <= 5.8.9 - Unauthenticated Basic Information Exposure — Poll Maker – Versus Polls, Anonymous Polls, Image Polls	5.3	Medium	2025-08-16
CVE-2025-26709	Unauthorized Access Vulnerability in ZTE F50 — F50	5.7	Medium	2025-08-15
CVE-2025-8091	EventON Lite <= 2.4.7 - Authenticated (Contributor+) Information Disclosure — EventON – Events Calendar	4.3	Medium	2025-08-15
CVE-2025-8676	B Slider - Gutenberg Slider Block for WP <= 2.0.0 - Authenticated (Subscriber+) Sensitive Information Exposure — bSlider – Create Responsive Image, Post, Product, and Video Sliders	4.3	Medium	2025-08-15
CVE-2025-9036	Rockwell Automation FactoryTalk® Action Manager v1.0.0 Runtime Vulnerability — FactoryTalk® Action Manager	6.5^AI	Medium^AI	2025-08-14
CVE-2025-55673	Apache Superset: Metadata exposure in embedded charts — Apache Superset	3.5^AI	Low^AI	2025-08-14
CVE-2025-55165	Autocaliweb Exposure of Sensitive Information to an Unauthorized Actor in `config_sql.py` — autocaliweb	8.3	High	2025-08-12
CVE-2025-53728	Microsoft Dynamics 365 (On-Premises) Information Disclosure Vulnerability — Microsoft Dynamics 365 (on-premises) version 9.1	6.5	Medium	2025-08-12
CVE-2025-53156	Windows Storage Port Driver Information Disclosure Vulnerability — Windows 11 Version 24H2	5.5	Medium	2025-08-12
CVE-2025-53136	NT OS Kernel Information Disclosure Vulnerability — Windows 10 Version 1507	5.5	Medium	2025-08-12
CVE-2025-50154	Microsoft Windows File Explorer Spoofing Vulnerability — Windows 10 Version 1507	6.5	Medium	2025-08-12
CVE-2025-53781	Azure Virtual Machines Information Disclosure Vulnerability — DCadsv5-series Azure VM	7.7	High	2025-08-12
CVE-2025-33051	Microsoft Exchange Server Information Disclosure Vulnerability — Microsoft Exchange Server 2016 Cumulative Update 23	7.5	High	2025-08-12
CVE-2025-3831	Exposed SFTP server — Check Point Harmony SASE	8.1	High	2025-08-12
CVE-2025-40768	Siemens SINEC Traffic Analyzer 信息泄露漏洞 — SINEC Traffic Analyzer	7.3	High	2025-08-12

Vulnerabilities classified as CWE-200 (信息暴露) represent 2723 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

CWE-200 (信息暴露) — Vulnerability Class 2723