Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-359 (侵犯隐私) — Vulnerability Class 123

123 vulnerabilities classified as CWE-359 (侵犯隐私). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2023-44156 Acronis Cyber Protect 安全漏洞 — Acronis Cyber Protect 15 6.5 -2023-09-27
CVE-2023-1936 Exposure of Private Personal Information to an Unauthorized Actor in GitLab — GitLab 3.5 Low2023-07-11
CVE-2023-35151 XWiki Platform may show email addresses in clear in REST results — xwiki-platform 7.5 High2023-06-23
CVE-2023-28303 Windows Snipping Tool Information Disclosure Vulnerability — Snipping Tool 3.3 Low2023-06-13
CVE-2023-2703 Information Disclosure in Finex Media's Competition Management System — Competition Management System 7.5 High2023-05-23
CVE-2023-22918 Zyxel ATP 安全漏洞 — ATP series firmware 6.5 Medium2023-04-24
CVE-2023-2239 Exposure of Private Personal Information to an Unauthorized Actor in microweber/microweber — microweber/microweber 7.5 -2023-04-22
CVE-2023-29203 Unauthenticated user can have information about hidden users on subwikis through uorgsuggest.vm — xwiki-platform 3.7 Low2023-04-15
CVE-2023-25819 Discourse tags with no visibility are leaking into og:article:tag — discourse 5.3 Medium2023-03-04
CVE-2023-26041 Nextcloud Talk messages can still be seen on conversation after expiring when cron is misconfigured — security-advisories 2.6 Low2023-02-27
CVE-2022-46168 Group SMTP user emails are exposed in CC email header — discourse 3.5 Low2023-01-05
CVE-2022-41971 Nextcloud Talk guests can continue to receive video streams from call after being removed from a conversation — security-advisories 4.8 Medium2022-12-01
CVE-2022-41936 Exposure of Private Personal Information to an Unauthorized Actor in xwiki-platform-rest-server — xwiki-platform 5.3 Medium2022-11-22
CVE-2022-20942 多款Cisco产品安全漏洞 — Cisco Secure Web Appliance 6.5 Medium2022-11-03
CVE-2022-0852 Red Hat Convert2RHEL 安全漏洞 — convert2rhel 5.5 -2022-08-29
CVE-2022-2921 Exposure of Private Personal Information to an Unauthorized Actor in notrinos/notrinoserp — notrinos/notrinoserp 9.8 -2022-08-21
CVE-2022-35932 Missing rate limit when trying to join a password protected Nextcloud Talk conversation — security-advisories 3.5 Low2022-08-12
CVE-2021-46687 JFrog Artifactory 安全漏洞 — JFrog Artifactory 4.9 Medium2022-07-06
CVE-2022-24890 Exposure of Private Personal Information to an Unauthorized Actor in Nextcloud Talk — security-advisories 2.4 Low2022-05-17
CVE-2022-1365 Exposure of Private Personal Information to an Unauthorized Actor in lquixada/cross-fetch — lquixada/cross-fetch 7.5 -2022-04-15
CVE-2022-24820 Unauthenticated user can list hidden document from multiple velocity templates — xwiki-platform 5.3 Medium2022-04-08
CVE-2022-24819 Unauthenticated user can retrieve the list of users through uorgsuggest.vm — xwiki-platform 5.3 Medium2022-04-08
CVE-2022-0482 Exposure of Private Personal Information to an Unauthorized Actor in alextselegidis/easyappointments — alextselegidis/easyappointments 7.5 -2022-03-09
CVE-2022-24719 Unauthorized forwarding of confidential headers in fluture-node — fluture-node 2.6 Low2022-03-01
CVE-2022-0155 Exposure of Private Personal Information to an Unauthorized Actor in follow-redirects/follow-redirects — follow-redirects/follow-redirects 6.5 -2022-01-10
CVE-2021-36723 Emuse - eServices / eNvoice Exposure Of Private Personal Information — eServices / eNvoice 6.1 Medium2021-12-29
CVE-2021-3980 Exposure of Private Personal Information to an Unauthorized Actor in elgg/elgg — elgg/elgg 7.5 -2021-12-03
CVE-2021-28559 Adobe Acrobat Reader privacy violation vulnerability could lead to privilege escalation — Acrobat Reader 5.3 Medium2021-09-02
CVE-2021-21823 komoot 信息泄露漏洞 — Komoot 7.5 -2021-08-20
CVE-2021-22876 Haxx libcurl 信息泄露漏洞 — https://github.com/curl/curl 7.5 -2021-04-01

Vulnerabilities classified as CWE-359 (侵犯隐私) represent 123 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.