Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-497 (将系统数据暴露到未授权控制的范围) — Vulnerability Class 286

286 vulnerabilities classified as CWE-497 (将系统数据暴露到未授权控制的范围). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-60119 WordPress CoSchedule Plugin <= 3.3.11 - Sensitive Data Exposure Vulnerability — CoSchedule 5.3 Medium2025-09-26
CVE-2025-60092 WordPress Download Manager Plugin <= 3.3.25 - Sensitive Data Exposure Vulnerability — Download Manager 5.3 Medium2025-09-26
CVE-2025-59582 WordPress Ajax Load More Plugin <= 7.6.0.2 - Sensitive Data Exposure Vulnerability — Ajax Load More 5.3 Medium2025-09-22
CVE-2025-57916 WordPress WP System Information Plugin <= 1.5 - Sensitive Data Exposure Vulnerability — WP System Information 4.3 Medium2025-09-22
CVE-2025-57937 WordPress WPeMatico RSS Feed Fetcher Plugin <= 2.8.10 - Sensitive Data Exposure Vulnerability — WPeMatico RSS Feed Fetcher 4.3 Medium2025-09-22
CVE-2025-58007 WordPress Social Pug Plugin <= 1.35.2 - Sensitive Data Exposure Vulnerability — Hubbub Lite 4.3 Medium2025-09-22
CVE-2025-58015 WordPress Quiz Maker Plugin <= 6.7.0.65 - Sensitive Data Exposure Vulnerability — Quiz Maker 5.3 Medium2025-09-22
CVE-2025-36146 IBM watsonx.data information disclosure — watsonx.data 4.3 Medium2025-09-18
CVE-2024-12367 Information Disclosure in Vegagrup Software's Vega Master — Vega Master 8.6 High2025-09-16
CVE-2025-4235 User-ID Credential Agent: Cleartext Exposure of Service Account password — User-ID Credential Agent 8.8 -2025-09-12
CVE-2025-10264 Digiever|NVR - Exposure of Sensitive Information — DS-1200 10.0 Critical2025-09-12
CVE-2025-6769 Exposure of Sensitive System Information to an Unauthorized Control Sphere in GitLab — GitLab 4.3 Medium2025-09-12
CVE-2025-9364 Rockwell Automation FactoryTalk® Analytics™ LogixAI® Exposed Redis DB — FactoryTalk® Analytics™ LogixAI® 9.1AICriticalAI2025-09-09
CVE-2025-58866 WordPress Site Info Plugin <= 1.1 - Sensitive Data Exposure Vulnerability — Site Info 2.7 Low2025-09-05
CVE-2025-58797 WordPress Ninja Charts plugin <= 3.3.5 - Sensitive Data Exposure vulnerability — Ninja Charts 5.3 Medium2025-09-05
CVE-2025-2667 IBM Sterling B2B Integrator information disclosure — Sterling B2B Integrator 2.7 Low2025-09-04
CVE-2025-36162 IBM DevOps Deploy / IBM UrbanCode Deploy information disclosure — UrbanCode Deploy 4.3 Medium2025-09-02
CVE-2025-8700 Privilege Escalation via get-task-allow entitlement in Invoice Ninja — Invoice Ninja 7.3AIHighAI2025-08-26
CVE-2025-8597 Privilege Escalation via get-task-allow entitlement in MacVim.app — MacVim 7.3AIHighAI2025-08-26
CVE-2025-57888 WordPress Jobmonster Theme <= 4.8.0 - Sensitive Data Exposure Vulnerability — Jobmonster 5.3 Medium2025-08-22
CVE-2025-27721 INFINITT Healthcare INFINITT PACS Exposure of Sensitive System Information to an Unauthorized Control Sphere — INFINITT PACS System Manager 7.5 High2025-08-21
CVE-2025-48355 WordPress ProveSource Social Proof plugin <= 3.1.2 - Sensitive Data Exposure vulnerability — ProveSource Social Proof 5.3 Medium2025-08-21
CVE-2025-2988 IBM Sterling B2B Integrator and IBM Sterling File Gateway information disclosure — Sterling B2B Integrator 2.7 Low2025-08-19
CVE-2025-54736 WordPress Savoy Theme <= 3.0.8 - Sensitive Data Exposure Vulnerability — Savoy 5.3 Medium2025-08-14
CVE-2025-23288 NVIDIA GPU Display Driver 安全漏洞 — GPU Display Drivers 3.3 Low2025-08-02
CVE-2025-23287 NVIDIA GPU Display Driver 安全漏洞 — GPU Display Drivers 3.3 Low2025-08-02
CVE-2022-50237 ed25519-dalek crate 安全漏洞 — ed25519-dalek 5.9 Medium2025-07-28
CVE-2025-53862 Aap: aap-gateway: automation-hub: sensitive information disclosure — Red Hat Ansible Automation Platform 2 3.5 Low2025-07-11
CVE-2025-6390 Cleartext storage of sensitive information in Brocade SANnav server audit logs. — Brocade SANnav 5.5AIMediumAI2025-07-10
CVE-2025-4662 Plaintext security passwords are logged in the audit logs while executing openssl cmd — Brocade SANnav 5.5AIMediumAI2025-07-10

Vulnerabilities classified as CWE-497 (将系统数据暴露到未授权控制的范围) represent 286 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.