Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-209 (通过错误消息导致的信息暴露) — Vulnerability Class 293

293 vulnerabilities classified as CWE-209 (通过错误消息导致的信息暴露). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2021-20455 IBM Cognos Controller information disclosure — Controller 3.7 Low2025-01-07
CVE-2024-25037 IBM Cognos Controller information disclosure — Controller 4.3 Medium2025-01-07
CVE-2024-52893 IBM Concert Software information disclosure — Concert Software 5.3 Medium2025-01-07
CVE-2024-11625 Progress Sitefinity 安全漏洞 — Sitefinity 7.7 High2025-01-07
CVE-2024-5591 IBM Jazz Foundation information disclosure — Jazz Foundation 4.3 Medium2025-01-03
CVE-2024-39725 IBM Engineering Lifecycle Optimization - Engineering Insights information disclosure — Engineering Insights 5.3 Medium2024-12-25
CVE-2024-23945 Apache Hive, Apache Spark, Apache Spark: CookieSigner exposes the correct signature when message verification fails — Apache Hive 8.2 -2024-12-23
CVE-2024-52897 IBM MQ information disclosure — MQ 6.2 Medium2024-12-19
CVE-2024-52896 IBM MQ information disclosure — MQ 6.2 Medium2024-12-19
CVE-2024-49818 IBM Security Guardium Key Lifecycle Manager information disclosure — Security Guardium Key Lifecycle Manager 4.3 Medium2024-12-17
CVE-2024-54366 WordPress Vimeography plugin <= 2.4.4 - Full Path Disclosure (FPD) vulnerability — Vimeography 5.3 Medium2024-12-16
CVE-2024-51460 IBM InfoSphere Information Server information disclosure — InfoSphere Information Server 4.3 Medium2024-12-11
CVE-2024-53948 Apache Superset: Error verbosity exposes metadata in analytics databases — Apache Superset 5.3 -2024-12-09
CVE-2024-54141 phpMyFAQ Generates an Error Message Containing Sensitive Information if database server is not available — phpMyFAQ 8.6 High2024-12-06
CVE-2024-53253 Sentry's improper error handling leaks Application Integration Client Secret — sentry 5.3 Medium2024-11-22
CVE-2024-48896 Moodle: users' names returned in messaging error message 4.3AIMediumAI2024-11-18
CVE-2021-3986 Information Disclosure in janeczku/calibre-web — janeczku/calibre-web 4.3AIMediumAI2024-11-15
CVE-2024-30141 HCL BigFix Compliance is vulnerable to the generation of error messages containing sensitive information — BigFix Compliance 4.7 Medium2024-11-07
CVE-2024-52043 User enumeration in HubHub — HumHub 5.3AIMediumAI2024-11-06
CVE-2024-51560 Improper Error Handling Vulnerability in Wave 2.0 — Wave 2.0 4.3AIMediumAI2024-11-04
CVE-2024-50512 WordPress Posti Shipping plugin <= 3.10.2 - Full Path Disclosure (FPD) vulnerability — Posti Shipping 5.3 Medium2024-10-30
CVE-2023-50355 HCL Sametime is impacted by generation of error messages containing sensitive information — Sametime 3.6 Low2024-10-23
CVE-2024-45713 SolarWinds Kiwi CatTools Sensitive Information Disclosure Vulnerability — Kiwi CatTools 5.1 Medium2024-10-17
CVE-2024-7038 Information Disclosure in open-webui/open-webui — open-webui/open-webui 6.5AIMediumAI2024-10-09
CVE-2024-5435 Generation of Error Message Containing Sensitive Information in GitLab — GitLab 4.5 Medium2024-09-12
CVE-2024-8571 erjemin roll_cms views.py information exposure — roll_cms 3.5 Low2024-09-08
CVE-2024-41674 CKAN may leak Solr credentials via error message in package_search action — ckan 5.3 Medium2024-08-21
CVE-2024-43376 Umbraco CMS vulnerable to Generation of Error Message Containing Sensitive Information — Umbraco-CMS 4.3 Medium2024-08-20
CVE-2023-47728 IBM QRadar Suite Software information disclosure — QRadar Suite Software 6.5 Medium2024-08-16
CVE-2024-39751 IBM InfoSphere Information Server information disclosure — InfoSphere Information Server 4.3 Medium2024-08-06

Vulnerabilities classified as CWE-209 (通过错误消息导致的信息暴露) represent 293 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.