Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-201 (通过发送数据的信息暴露) — Vulnerability Class 284

284 vulnerabilities classified as CWE-201 (通过发送数据的信息暴露). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-62126 WordPress Varnish/Nginx Proxy Caching plugin <= 1.8.3 - Sensitive Data Exposure vulnerability — Varnish/Nginx Proxy Caching 5.3 Medium2025-12-31
CVE-2025-59136 WordPress Gerencianet Oficial plugin <= 3.1.3 - Sensitive Data Exposure vulnerability — Gerencianet Oficial 5.3 Medium2025-12-31
CVE-2025-62139 WordPress Terms descriptions plugin <= 3.4.10 - Sensitive Data Exposure vulnerability — Terms descriptions 5.3 Medium2025-12-31
CVE-2025-59003 WordPress ColorWay Theme <= 4.2.3 - Sensitive Data Exposure Vulnerability — ColorWay 7.5 -2025-12-31
CVE-2025-68989 WordPress Contact Form 7 Extension For Mailchimp plugin <= 0.9.68 - Sensitive Data Exposure vulnerability — contact-form-7-mailchimp-extension 4.3 Medium2025-12-30
CVE-2025-68040 WordPress WP Project Manager plugin <= 3.0.1 - Sensitive Data Exposure vulnerability — WP Project Manager 6.5 Medium2025-12-29
CVE-2025-68516 WordPress Tablesome plugin <= 1.1.35.1 - Sensitive Data Exposure vulnerability — Tablesome 5.0 Medium2025-12-24
CVE-2025-62998 WordPress WP AI CoPilot plugin <= 1.2.7 - Sensitive Data Exposure vulnerability — WP AI CoPilot 5.0 Medium2025-12-18
CVE-2025-14823 Certificate Signing Extension Returns Encrypted Values — ScreenConnect 5.3 Medium2025-12-18
CVE-2025-66116 WordPress Ultimate Member Widgets for Elementor plugin <= 2.3 - Sensitive Data Exposure vulnerability — Ultimate Member Widgets for Elementor 6.5AIMediumAI2025-12-18
CVE-2025-64295 WordPress All In One SEO Pack plugin <= 4.8.6.1 - Sensitive Data Exposure vulnerability — All In One SEO Pack 7.5AIHighAI2025-12-18
CVE-2025-64218 WordPress Passster plugin <= 4.2.19 - Sensitive Data Exposure vulnerability — Passster 7.5AIHighAI2025-12-18
CVE-2025-64213 WordPress MasterStudy LMS Pro plugin < 4.7.16 - Sensitive Data Exposure vulnerability — MasterStudy LMS Pro 5.7AIMediumAI2025-12-18
CVE-2025-49919 WordPress eRoom plugin <= 1.5.6 - Sensitive Data Exposure vulnerability — eRoom 7.5AIHighAI2025-12-18
CVE-2025-49918 WordPress VikBooking Hotel Booking Engine & PMS plugin <= 1.8.2 - Sensitive Data Exposure vulnerability — VikBooking Hotel Booking Engine & PMS 5.9 Medium2025-12-18
CVE-2025-66125 WordPress Ultimate Auction plugin <= 4.3.3 - Sensitive Data Exposure vulnerability — Ultimate Auction 5.3 Medium2025-12-16
CVE-2025-66126 WordPress Fix Media Library plugin <= 2.0 - Sensitive Data Exposure vulnerability — Fix Media Library 5.3 Medium2025-12-16
CVE-2025-49300 WordPress Traveler Option Tree plugin <= 2.8 - Sensitive Data Exposure vulnerability — Traveler Option Tree 6.5AIMediumAI2025-12-16
CVE-2025-66388 Apache Airflow: Secrets in rendered templates not redacted properly and exposed in the UI — Apache Airflow 6.5 -2025-12-15
CVE-2025-67721 Aircompressor's Snappy and LZ4 Java-based decompressor implementation can leak information from reused output buffer — aircompressor 7.5AIHighAI2025-12-12
CVE-2025-63071 WordPress Shortcodes and extra features for Phlox theme plugin <= 2.17.15 - Sensitive Data Exposure vulnerability — Shortcodes and extra features for Phlox theme 7.5AIHighAI2025-12-09
CVE-2025-63007 WordPress EventPrime plugin <= 4.2.4.1 - Sensitive Data Exposure vulnerability — EventPrime 5.5AIMediumAI2025-12-09
CVE-2025-62997 WordPress WP EasyCart plugin <= 5.8.11 - Sensitive Data Exposure vulnerability — WP EasyCart 7.5AIHighAI2025-12-09
CVE-2025-62994 WordPress WP AI CoPilot plugin <= 1.2.7 - Sensitive Data Exposure vulnerability — WP AI CoPilot 7.5AIHighAI2025-12-09
CVE-2025-62109 WordPress Geo Controller plugin <= 8.9.4 - Sensitive Data Exposure vulnerability — Geo Controller 5.3 Medium2025-12-09
CVE-2025-66566 yawkat LZ4 Java has a possible information leak in Java safe decompressor — lz4-java 7.5 -2025-12-05
CVE-2025-58098 Apache HTTP Server: Server Side Includes adds query string to #exec cmd=... — Apache HTTP Server 8.1 -2025-12-05
CVE-2025-13295 Sensitive Data Exposure in ArgusTech's BILGER — BILGER 7.5 High2025-12-02
CVE-2025-20789 MediaTek Chipsets 安全漏洞 — MT6781, MT6833, MT6853, MT6877, MT6893, MT8196 5.0AIMediumAI2025-12-02
CVE-2025-66035 Angular HTTP Client Has XSRF Token Leakage via Protocol-Relative URLs — angular 6.5AIMediumAI2025-11-26

Vulnerabilities classified as CWE-201 (通过发送数据的信息暴露) represent 284 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.