Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-201 (通过发送数据的信息暴露) — Vulnerability Class 284

284 vulnerabilities classified as CWE-201 (通过发送数据的信息暴露). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2026-27465 Fleet: Sensitive Google Calendar credentials disclosed to low-privileged users — fleet 4.3AIMediumAI2026-02-26
CVE-2026-27516 Binardat 10G08-0800GSM Network Switch Plaintext Password Exposure — 10G08-0800GSM Network Switch 7.5 High2026-02-24
CVE-2026-27514 Tenda F3 Plaintext Credential Exposure in Configuration Download — Tenda F3 6.5 Medium2026-02-23
CVE-2025-68855 WordPress JobBoard Job listing plugin <= 1.2.8 - Sensitive Data Exposure vulnerability — JobBoard Job listing 7.5AIHighAI2026-02-20
CVE-2026-25008 WordPress Ninja Tables plugin <= 5.2.5 - Sensitive Data Exposure vulnerability — Ninja Tables 7.5AIHighAI2026-02-19
CVE-2025-7708 Sensitive Data Exposure in Atlas Software's k12net — k12net 6.8 Medium2026-02-09
CVE-2025-15329 Tanium addressed an information disclosure vulnerability in Threat Response. — Threat Response 4.9 Medium2026-02-05
CVE-2020-37150 Edimax Technology EW-7438RPn-v3 Mini 1.27 - Unauthorized Access: Wi-Fi Password Disclosure — EW-7438RPn Mini 7.5 High2026-02-05
CVE-2020-37093 Netis E1+ 1.2.32533 - Unauthenticated WiFi Password Leak — Netis E1+ 7.5 High2026-02-03
CVE-2026-24427 Tenda AC7 Exposes Admin Credentials in Configuration Responses — Tenda AC7 8.1AIHighAI2026-02-03
CVE-2026-24992 WordPress Advanced WooCommerce Product Sales Reporting plugin <= 4.1.2 - Sensitive Data Exposure vulnerability — Advanced WooCommerce Product Sales Reporting 7.5AIHighAI2026-02-03
CVE-2025-67857 Moodle: moodle: data exposure of user identifiers in urls 4.3 Medium2026-02-03
CVE-2026-1539 Libsoup: libsoup: credential leakage via http redirects — Red Hat Enterprise Linux 10 5.8 Medium2026-01-28
CVE-2026-24477 AnythingLLM has key leak in `systemSettings.js` — anything-llm 9.1AICriticalAI2026-01-26
CVE-2026-24430 Tenda W30E V2 HTTP Responses Expose Plaintext Credentials — W30E V2 7.5AIHighAI2026-01-26
CVE-2026-24589 WordPress Cargus plugin <= 1.5.8 - Sensitive Data Exposure vulnerability — Cargus 7.5 -2026-01-23
CVE-2026-24565 WordPress B Accordion plugin <= 2.0.2 - Sensitive Data Exposure vulnerability — B Accordion 6.2 -2026-01-23
CVE-2026-24559 WordPress Integration for Contact Form 7 HubSpot plugin <= 1.4.3 - Sensitive Data Exposure vulnerability — Integration for Contact Form 7 HubSpot 5.3 Medium2026-01-23
CVE-2026-24557 WordPress Contact Form 7 GetResponse Extension plugin <= 1.0.8 - Sensitive Data Exposure vulnerability — Contact Form 7 GetResponse Extension 7.5 -2026-01-23
CVE-2025-68035 WordPress Tabby Checkout plugin <= 5.8.4 - Sensitive Data Exposure vulnerability — Tabby Checkout 7.5AIHighAI2026-01-22
CVE-2025-68006 WordPress Booking Ultra Pro plugin <= 1.1.23 - Sensitive Data Exposure vulnerability — Booking Ultra Pro 6.5AIMediumAI2026-01-22
CVE-2025-63019 WordPress Cookies and Content Security Policy plugin <= 2.34 - Sensitive Data Exposure vulnerability — Cookies and Content Security Policy 5.3 Medium2026-01-22
CVE-2026-23878 HotCRP vulnerable to exposure of submitted documents — hotcrp 6.5 Medium2026-01-19
CVE-2026-22246 Local Mastodon users can enumerate and access severed relationships of every other local user — mastodon 6.5 Medium2026-01-08
CVE-2025-67931 WordPress BulletProof Security plugin <= 6.9 - Sensitive Data Exposure vulnerability — BulletProof Security 7.5 -2026-01-08
CVE-2026-22539 INFORMATION DISCLOSURE VIA CURL REQUESTS (OCPP) — QC 60/90/120 5.3 -2026-01-07
CVE-2025-59955 Coolify leaksensitive information `email_change_code` in `/api/v1/teams/{team_id | current}/members` API endpoint — coolify 7.1 -2026-01-05
CVE-2025-68033 WordPress Custom Related Posts plugin <= 1.8.0 - Sensitive Data Exposure vulnerability — Custom Related Posts 7.5 High2026-01-05
CVE-2025-68029 WordPress Wallet System for WooCommerce plugin <= 2.7.3 - Sensitive Data Exposure vulnerability — Wallet System for WooCommerce 7.5 -2026-01-05
CVE-2025-68014 WordPress AweBooking plugin <= 3.2.26 - Sensitive Data Exposure vulnerability — AweBooking 6.5 Medium2026-01-05

Vulnerabilities classified as CWE-201 (通过发送数据的信息暴露) represent 284 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.