Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now

CWE-497 (将系统数据暴露到未授权控制的范围) — Vulnerability Class 286

286 vulnerabilities classified as CWE-497 (将系统数据暴露到未授权控制的范围). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPaused
CVE-2025-68943 Gitea 安全漏洞 — Gitea 5.3 Medium2025-12-26
CVE-2025-68606 WordPress PostX plugin <= 5.0.3 - Sensitive Data Exposure vulnerability — PostX 5.3 Medium2025-12-24
CVE-2025-68576 WordPress Virusdie plugin <= 1.1.6 - Sensitive Data Exposure vulnerability — Virusdie 4.3 Medium2025-12-24
CVE-2025-67621 WordPress Eight Day Week Print Workflow plugin <= 1.2.5 - Sensitive Data Exposure vulnerability — Eight Day Week Print Workflow 4.3 Medium2025-12-24
CVE-2025-68494 WordPress Premium Addons for Elementor plugin <= 4.11.53 - Sensitive Data Exposure vulnerability — Premium Addons for Elementor 5.3 Medium2025-12-24
CVE-2025-68551 WordPress VPSUForm plugin <= 3.2.24 - Sensitive Data Exposure vulnerability — VPSUForm 6.5 Medium2025-12-23
CVE-2025-11545 Sharp NP series 安全漏洞 — NP-PA1705UL-W, NP-PA1705UL-W+, NP-PA1705UL-B, NP-PA1705UL-B+, NP-PA1505UL-W, NP-PA1505UL-W+, NP-PA1505UL-B, NP-PA1505UL-B+, NP-PA1505UL-BJL NP-PV800UL-W, NP-PV800UL-W+, NP-PV800UL-B, NP-PV800UL-B+, NP-PV710UL-W, NP-PV710UL-W+, NP-PV710UL-B, NP-PV710UL-B+, NP-PV800UL-W1, NP-PV800UL-B1, NP-PV710UL-W1, NP-PV710UL-B1, NP-PV800UL-B1G, NP-PV710UL-B1G, NP-PV800UL-WH, NP-PV710UL-WH, NP-P627UL, NP-P627ULG, NP-P627UL+, NP-P547UL, NP-P547ULG, NP-P607UL+, NP-CG6600UL, NP-H6271UL, NP-H5471UL, NP-P627ULH, NP-P547ULH NP-PV710UL+ NP-PA1004UL-W, NP-PA1004UL-WG, NP-PA1004UL-W+, NP-PA1004UL-WH, NP-PA1004UL-B, NP-PA1004UL-BG, NP-PA1004UL-B+, NP-PA804UL-W, NP-PA804UL-WG, NP-PA804UL-W+, NP-PA804UL-WH, NP-PA804UL-B, NP-PA804UL-BG, NP-PA804UL-B+, NP-PA1004UL-BH, NP-PA804UL-BH, NP-PE455UL, NP-PE455ULG, NP-PE455WL, NP-PE455WLG, NP-PE505XLG, NP-CG6500XL, NP-CG6400UL, NP-CG6400WL, NP-CB4500XL, NP-CA4120X, NP-CA4160W, NP-CA4160X, NP-CA4200U, NP-CA4200W, NP-CA4202W, NP-CA4260X, NP-CA4300X, NP-CA4355X, NP-CD2100U, NP-CD2120X, NP-CD2300X, NP-CR2100X, NP-CR2170W, NP-CR2170X, NP-CR2200U, NP-CR2200W, NP-CR2280X, NP-CR2310X, NP-CR2350X, NP-MC302XG, NP-MC332WG, NP-MC342XG, NP-MC372X, NP-MC372XG, NP-MC382W, NP-MC382WG, NP-MC422XG, NP-ME342UG, NP-ME372W, NP-ME372WG, NP-ME382U, NP-ME382UG, NP-ME402X, NP-ME402XG NP-CU4300XD, NP-CU4200XD, NP-CU4200WD, NP-UM383WL, NP-UM383WLG, NP-CJ2200WD, NP-PH3501QL, NP-PH3501QL+, NP-PH2601QL, NP-PH2601QL+, NP-PH350Q40L, NP-PH260Q30L, NP-PX1005QL-W, NP-PX1005QL-B, NP-PX1005QL-B+, NP-P525UL, NP-P525ULG, NP-P525UL+, NP-P525WL, NP-P525WLG, NP-P525WL+, NP-P605UL, NP-P605ULG, NP-P605UL+ 9.1AICriticalAI2025-12-22
CVE-2025-62955 WordPress TempTool [Show Current Template Info] plugin <= 1.3.1 - Sensitive Data Exposure vulnerability — TempTool [Show Current Template Info] 4.3 Medium2025-12-21
CVE-2024-58320 Kentico Xperience <= 13.0.159 Authentication Information Disclosure — Xperience 5.3 Medium2025-12-18
CVE-2019-25230 Kentico Xperience <= 12.0.0 User Widget Information Disclosure — Xperience 4.3 Medium2025-12-18
CVE-2019-25228 Kentico Xperience <= 12.0.47 Virtual Context Information Disclosure — Xperience 5.3 Medium2025-12-18
CVE-2025-67546 WordPress WP ERP plugin <= 1.16.6 - Sensitive Data Exposure vulnerability — WP ERP 7.5AIHighAI2025-12-18
CVE-2025-64270 WordPress Masteriyo - LMS plugin <= 2.0.3 - Sensitive Data Exposure vulnerability — Masteriyo - LMS 7.5AIHighAI2025-12-18
CVE-2025-64272 WordPress Email marketing for WordPress by GetResponse Official plugin <= 1.5.3 - Sensitive Data Exposure vulnerability — Email marketing for WordPress by GetResponse Official 7.5AIHighAI2025-12-18
CVE-2025-64258 WordPress Follow My Blog Post plugin <= 2.3.9 - Sensitive Data Exposure vulnerability — Follow My Blog Post 6.5AIMediumAI2025-12-18
CVE-2025-49914 WordPress Restaurant Menu by MotoPress plugin <= 2.4.7 - Sensitive Data Exposure vulnerability — Restaurant Menu by MotoPress 6.2AIMediumAI2025-12-18
CVE-2025-47319 Exposure of Sensitive System Information to an Unauthorized Control Sphere in HLOS — Snapdragon 6.7 Medium2025-12-18
CVE-2025-34442 AVideo < 20.1 System Path Disclosure via Public API — AVideo 5.3AIMediumAI2025-12-17
CVE-2025-67948 WordPress SendPulse Email Marketing Newsletter plugin <= 2.2.1 - Sensitive Data Exposure vulnerability — SendPulse Email Marketing Newsletter 7.5AIHighAI2025-12-16
CVE-2025-14712 JHENG GAO|Student Learning Assessment and Support System - Exposure of Sensitive Information — Student Learning Assessment and Support System 7.5 High2025-12-15
CVE-2025-67717 Zitadel Discloses the Total Number of Instance Users — zitadel 4.3AIMediumAI2025-12-11
CVE-2025-63070 WordPress Download Manager plugin <= 3.3.32 - Sensitive Data Exposure vulnerability — Download Manager 7.5AIHighAI2025-12-09
CVE-2025-63058 WordPress Custom Field Template plugin <= 2.7.6 - Sensitive Data Exposure vulnerability — Custom Field Template 4.3 Medium2025-12-09
CVE-2025-63013 WordPress WP Hotel Booking plugin <= 2.2.7 - Sensitive Data Exposure vulnerability — WP Hotel Booking 4.3 Medium2025-12-09
CVE-2025-63009 WordPress WP Google Analytics Events plugin <= 2.8.2 - Sensitive Data Exposure vulnerability — WP Google Analytics Events 7.5AIHighAI2025-12-09
CVE-2025-62737 WordPress Image Cleanup plugin <= 1.9.2 - Sensitive Data Exposure vulnerability — Image Cleanup 7.5AIHighAI2025-12-09
CVE-2025-62735 WordPress User Spam Remover plugin <= 1.1 - Sensitive Data Exposure vulnerability — User Spam Remover 7.5AIHighAI2025-12-09
CVE-2025-67567 WordPress Sober theme <= 3.5.11 - Sensitive Data Exposure vulnerability — Sober 6.2AIMediumAI2025-12-09
CVE-2025-67565 WordPress Rehub theme <= 19.9.9.1 - Sensitive Data Exposure vulnerability — Rehub 7.5AIHighAI2025-12-09
CVE-2025-67564 WordPress Pixel Manager for WooCommerce plugin <= 1.51.1 - Sensitive Data Exposure vulnerability — Pixel Manager for WooCommerce 7.5AIHighAI2025-12-09

Vulnerabilities classified as CWE-497 (将系统数据暴露到未授权控制的范围) represent 286 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.