Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-200 (信息暴露) — Vulnerability Class 2723

2723 vulnerabilities classified as CWE-200 (信息暴露). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-4390 WP Private Content Plus <= 3.6.2 - Unauthenticated Sensitive Information Exposure — WP Private Content Plus 5.3 Medium2025-08-12
CVE-2025-8866 YugabyteDB 安全漏洞 — YugabyteDB Anywhere 5.3AIMediumAI2025-08-11
CVE-2025-55008 AuthKit React Router: Sensitive auth data rendered in HTML — authkit-react-router 7.1 High2025-08-09
CVE-2025-55009 AuthKit: Sensitive auth data rendered in HTML — authkit-remix 7.1 High2025-08-09
CVE-2025-8738 zlt2000 microservices-platform Spring Actuator Interface actuator information disclosure — microservices-platform 5.3 Medium2025-08-08
CVE-2024-58255 Huawei EnzoH 安全漏洞 — EnzoH-W5611T 5.0 Medium2025-08-08
CVE-2024-58257 Huawei EnzoH 安全漏洞 — EnzoH-W5611T 5.7 Medium2025-08-08
CVE-2024-58256 Huawei EnzoH 安全漏洞 — EnzoH-W5611T 4.5 Medium2025-08-08
CVE-2025-54786 SuiteCRM: Legacy iCal service allows unauthenticated access to meeting data — SuiteCRM-Core 5.3 Medium2025-08-06
CVE-2025-38746 Dell SupportAssist OS Recovery 信息泄露漏洞 — SupportAssist OS Recovery 3.5 Low2025-08-06
CVE-2025-46388 Emby MediaBrowser 信息泄露漏洞 — MediaBrowser 4.3 Medium2025-08-06
CVE-2025-8620 GiveWP – Donation Plugin and Fundraising Platform <= 4.6.0 - Unauthenticated Donor Data Exposure — GiveWP – Donation Plugin and Fundraising Platform 5.3 Medium2025-08-06
CVE-2025-54615 Huawei HarmonyOS 安全漏洞 — HarmonyOS 6.2 Medium2025-08-06
CVE-2025-8525 Exrick xboot Spring Boot Admin/Spring Actuator information disclosure — xboot 5.3 Medium2025-08-04
CVE-2025-8519 givanz Vvveb Drag-and-Drop Editor editor information disclosure — Vvveb 2.7 Low2025-08-04
CVE-2025-8515 Intelbras InControl JSON Endpoint operador information disclosure — InControl 3.1 Low2025-08-04
CVE-2025-23290 NVIDIA GPU Display Driver 信息泄露漏洞 — GPU Display Drivers 2.5 Low2025-08-02
CVE-2025-6722 BitFire <= 4.5 - Unauthenticated Information Exposure — BitFire Security – Firewall, WAF, Bot/Spam Blocker, Login Security 5.3 Medium2025-08-02
CVE-2025-4523 IDonate 2.0.0 - 2.1.9 - Missing Authorization to Authenticated (Subscriber+) Sensitive Information Disclosure via admin_donor_profile_view Function — IDonate – Blood Donation, Request And Donor Management System 6.5 Medium2025-08-01
CVE-2025-54586 GitProxy is susceptible to a hidden commits injection attack — git-proxy 7.1 High2025-07-30
CVE-2025-43018 Certain HP LaserJet Pro Printers – Potential Information Disclosure — Certain HP LaserJet Pro Printers 5.3AIMediumAI2025-07-30
CVE-2025-54425 Umbraco's Delivery API allows for cached requests to be returned with an invalid API key — Umbraco-CMS 5.3 Medium2025-07-30
CVE-2025-4426 SetupAutomationSmm : SMRAM memory contents leak / information disclosure vulnerability in SMM module — InsydeH2O 6.0 Medium2025-07-30
CVE-2025-8226 yanyutao0402 ChanCMS find information disclosure — ChanCMS 4.3 Medium2025-07-27
CVE-2025-54380 Opencast still publishes global system account credentials — opencast 6.5 Medium2025-07-26
CVE-2025-3508 Certain HP DesignJet products – Information disclosure — Certain HP DesignJet products 5.3 -2025-07-25
CVE-2020-36850 Sitecore JSS React Sample Application 11.0.0 - 14.0.1 Information Disclosure — JSS React Sample Application 4.6 -2025-07-25
CVE-2025-31955 HCL iAutomate is affected by a sensitive data exposure vulnerability — iAutomate 7.6 High2025-07-24
CVE-2025-7780 AI Engine <= 2.9.4 - Missing URL Scheme Validation to Authenticated (Subscriber+) Arbitrary File Read via simpleTranscribeAudio and get_audio Functions — AI Engine – The Chatbot, AI Framework & MCP for WordPress 6.5 Medium2025-07-24
CVE-2025-6082 Birth Chart Compatibility <= 2.0 - Unauthenticated Full Path Exposure — Birth Chart Compatibility 5.3 Medium2025-07-22

Vulnerabilities classified as CWE-200 (信息暴露) represent 2723 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.