Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-201 (通过发送数据的信息暴露) — Vulnerability Class 284

284 vulnerabilities classified as CWE-201 (通过发送数据的信息暴露). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-7204 Exposure of password hashes via API responses in ConnectWise PSA — PSA 6.5 Medium2025-07-09
CVE-2025-53322 WordPress Accept Authorize.NET Payments Using Contact Form 7 plugin <= 2.5 - Sensitive Data Exposure Vulnerability — Accept Authorize.NET Payments Using Contact Form 7 5.3 Medium2025-06-27
CVE-2025-53309 WordPress Accept Stripe Payments Using Contact Form 7 plugin <= 3.0 - Sensitive Data Exposure Vulnerability — Accept Stripe Payments Using Contact Form 7 5.3 Medium2025-06-27
CVE-2025-49584 XWiki makes title of inaccessible pages available through the class property values REST API — xwiki-platform 5.3AIMediumAI2025-06-13
CVE-2025-48261 WordPress MultiVendorX plugin <= 4.2.22 - Sensitive Data Exposure Vulnerability — MultiVendorX 7.5AIHighAI2025-06-09
CVE-2025-49294 WordPress Crawlomatic Multisite Scraper Post Generator plugin <= 2.6.8.2 - Sensitive Data Exposure via Log Exposure vulnerability — Crawlomatic Multisite Scraper Post Generator 5.3 Medium2025-06-06
CVE-2025-5733 Modern Events Calendar <= 7.21.9 - Information Exposure — Modern Events Calendar Lite 5.3 Medium2025-06-06
CVE-2025-31134 FreshRSS vulnerable to directory enumeration via ext.php — FreshRSS 5.3AIMediumAI2025-06-04
CVE-2025-48934 Deno.env.toObject() ignores the variables listed in --deny-env and returns all environment variables — deno 7.5AIHighAI2025-06-04
CVE-2025-48996 Unauthenticated Disclosure of PSU HAX CMS Site Listings via haxPsuUsage API Endpoint — issues 5.3 Medium2025-06-02
CVE-2025-48331 WordPress WooCommerce Orders & Customers Exporter <= 5.0 - Sensitive Data Exposure Vulnerability — WooCommerce Orders & Customers Exporter 7.5 High2025-05-30
CVE-2025-48381 CVAT has information disclosure via browsable API — cvat 4.3AIMediumAI2025-05-30
CVE-2025-48045 MICI Network Co. Ltd. NetFax Server Default Administrator Credentials Disclosure — NetFax Server 7.5AIHighAI2025-05-29
CVE-2025-39498 WordPress Spotlight - Social Media Feeds (Premium) plugin <= 1.7.1 - Sensitive Data Exposure vulnerability — Spotlight - Social Media Feeds (Premium) 5.3 Medium2025-05-26
CVE-2025-47541 WordPress Mail Mint plugin <= 1.17.7 - Sensitive Data Exposure Vulnerability — Mail Mint 7.5AIHighAI2025-05-23
CVE-2025-48219 O2 VoLTE 安全漏洞 — O2 3.5 Low2025-05-18
CVE-2025-47775 Bullfrog's DNS over TCP bypasses domain filtering — bullfrog 6.2 Medium2025-05-14
CVE-2025-3529 WordPress Simple PayPal Shopping Cart <= 5.1.2 - Unauthenticated Information Exposure via file_url Parameter — Simple Shopping Cart 8.2 High2025-04-23
CVE-2025-32594 WordPress Simple WP Events plugin <= 1.8.17 - Sensitive Data Exposure vulnerability — Simple WP Events 7.5 High2025-04-17
CVE-2025-32635 WordPress Hive Support plugin <= 1.2.6 - Sensitive Data Exposure vulnerability — Hive Support 7.5 High2025-04-17
CVE-2025-26335 Dell PowerProtect Cyber Recovery 安全漏洞 — PowerProtect Cyber Recovery 5.8 Medium2025-04-11
CVE-2025-27244 Hammock AssetView 安全漏洞 — AssetView 7.5 -2025-04-02
CVE-2025-31842 WordPress Viral Loops WP Integration Plugin <= 3.4.0 - Sensitive Data Exposure vulnerability — Viral Loops WP Integration 5.3 Medium2025-04-01
CVE-2025-27001 WordPress Shipmondo – A complete shipping solution for WooCommerce plugin <= 5.0.3 - Authenticated Arbitrary WordPress Option Disclosure vulnerability — Shipmondo – A complete shipping solution for WooCommerce 6.5 Medium2025-03-28
CVE-2025-30609 WordPress AppExperts plugin <= 1.4.3 - Sensitive Data Exposure Vulnerability — AppExperts 5.3 Medium2025-03-24
CVE-2025-2565 Liferay Portal和Liferay DXP 安全漏洞 — Portal 7.5 -2025-03-20
CVE-2024-7872 Sensetive Data Exposure in ExtremePACS' Extreme XDS — Extreme XDS 7.6 High2025-03-06
CVE-2025-26318 TSplus Remote Access 安全漏洞 — TSplus Remote Access 5.8 Medium2025-03-04
CVE-2025-24567 WordPress WP Mailster plugin <= 1.8.16.0 - Sensitive Data Exposure vulnerability — WP Mailster 6.5 Medium2025-02-14
CVE-2025-24639 WordPress Korea for WooCommerce plugin <= 1.1.11 - Sensitive Data Exposure vulnerability — Korea for WooCommerce 6.5 Medium2025-02-03

Vulnerabilities classified as CWE-201 (通过发送数据的信息暴露) represent 284 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.