Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-204 (响应差异性信息暴露) — Vulnerability Class 133

133 vulnerabilities classified as CWE-204 (响应差异性信息暴露). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-67500 Mastodon Error Handling Discrepancy Enables Private Status Existence Enumeration — mastodon 3.7 Low2025-12-09
CVE-2021-47717 IntelliChoice eFORCE Software Suite Username Enumeration — IntelliChoice eFORCE Software Suite 5.3AIMediumAI2025-12-09
CVE-2025-40806 Siemens Gridscale X Prepay 安全漏洞 — Gridscale X Prepay 5.3 Medium2025-12-09
CVE-2025-12994 Medtronic CareLink Network 安全漏洞 — CareLink Network 5.3 Medium2025-12-04
CVE-2025-66307 Grav Admin Plugin vulnerable to User Enumeration & Email Disclosure — grav 6.5 Medium2025-12-01
CVE-2025-59116 User enumeration in Windu CMS — Windu CMS 5.3AIMediumAI2025-11-18
CVE-2025-25236 Omnissa Workspace ONE UEM 安全漏洞 — Omnissa Workspace ONE UEM 5.3 Medium2025-11-12
CVE-2025-62236 Frontier Airlines publicly available email address validation — flyfrontier.com 5.3 Medium2025-10-23
CVE-2025-34155 Tibbo AggreGate Network Manager < 6.40.05 Login Functionality User Enumeration — AggreGate Network Manager 8.2AIHighAI2025-10-23
CVE-2025-34255 D-Link Nuclias Connect <= v1.3.1.4 Forgot Password Account Enumeration — Nuclias Connect 5.3AIMediumAI2025-10-16
CVE-2025-34254 D-Link Nuclias Connect <= v1.3.1.4 Login Account Enumeration — Nuclias Connect 5.3AIMediumAI2025-10-16
CVE-2025-61789 Icinga DB Web hidden/protected custom variables are prone to filter enumeration — icingadb-web 5.3 Medium2025-10-16
CVE-2025-42903 User Enumeration and Sensitive Data Exposure via RFC Function in SAP Financial Service Claims Management — SAP Financial Service Claims Management 4.3 Medium2025-10-14
CVE-2025-58586 User Enumeration by excessive error output — Baggage Analytics 5.3 Medium2025-10-06
CVE-2025-58442 Saleor has user enumeration vulnerability due to different error messages — saleor 5.3 Medium2025-09-09
CVE-2025-9824 User Enumeration via Response Timing — Mautic 5.9 Medium2025-09-03
CVE-2025-9109 Portabilis i-Diario Password Recovery Endpoint email observable response discrepancy — i-Diario 3.7 Low2025-08-18
CVE-2025-46390 Emby MediaBrowser 安全漏洞 — MediaBrowser 7.5 High2025-08-06
CVE-2025-54834 OPEXUS FOIAXpress Public Access Link (PAL) unauthenticated username enumeration — FOIAXpress Public Access Link (PAL) 5.3 Medium2025-07-31
CVE-2025-52899 Tuleap vulnerable to user enumeration via the lost password form — tuleap 5.3 Medium2025-07-29
CVE-2025-54129 HAXiam allows for User Enumeration — issues 4.3 Medium2025-07-21
CVE-2025-27451 CVE-2025-27451 — Endress+Hauser MEAC300-FNADE4 5.3 Medium2025-07-03
CVE-2025-3092 MB connect line: Observable response discrepancy in mbCONNECT24/mymbCONNECT24 — myREX24 7.5 High2025-06-24
CVE-2025-5485 SinoTrack GPS Receiver Weak Authentication — IOT PC Platform 8.6 High2025-06-12
CVE-2025-49187 User enumeration — SICK Field Analytics 5.3 Medium2025-06-12
CVE-2025-0163 IBM Security Verify Access information disclosure — Security Verify Access 5.3 Medium2025-06-11
CVE-2025-3939 Observable Response Discrepancy — Niagara Framework 5.3 Medium2025-05-22
CVE-2025-48015 Observable Response Discrepancy — SEL-5056 Software-Defined Network Flow Controller 3.7 Low2025-05-20
CVE-2024-51447 Siemens Polarion 安全漏洞 — Polarion V2310 5.3 Medium2025-05-13
CVE-2025-46736 Umbraco Makes User Enumeration Feasible Based on Timing of Login Response — Umbraco-CMS 5.3 Medium2025-05-06

Vulnerabilities classified as CWE-204 (响应差异性信息暴露) represent 133 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.