CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,108 vulnerabilities with CWE-200
CVE-2025-59716 MEDIUM
owncloud guests < 0.12.4 - Unauthenticated User Enumeration via Registration Endpoint
CVSS 5.3
CVE-2025-20377 MEDIUM
Cisco Unified Intelligence Center - Info Disclosure
CVSS 4.3
CVE-2025-12468 MEDIUM
FunnelKit Automations < 3.6.4.1 - Unauthenticated Sensitive Information Exposure via WC-Coupons REST API Endpoint
CVSS 5.3
CVE-2025-12677 MEDIUM
KiotViet Sync <1.8.5 - Info Disclosure
CVSS 5.3
CVE-2025-12139 HIGH
Google Drive WordPress Plugin <1.5.3 - Info Disclosure
CVSS 7.5
CVE-2025-11749 CRITICAL
WordPress AI Engine Plugin MCP Unauthenticated Admin Creation to RCE
CVSS 9.8
CVE-2025-62721 MEDIUM
LinkAce < 2.4.0 - Authenticated Improper Access Control in RSS Feed Endpoints
CVSS 6.5
CVE-2025-62720 MEDIUM
LinkAce < 2.4.0 - Authenticated Database Export via ExportController
CVSS 6.5
CVE-2025-60925 MEDIUM
codeshare 1.0.0 - Exposure of Sensitive Information
CVSS 5.3
CVE-2025-54323 HIGH
Samsung Exynos 980-2400 Information Disclosure via Debug Logging
CVSS 7.5
CVE-2025-43495 MEDIUM
iOS <18.7.2 & <26.1 - Info Disclosure
CVSS 5.4
CVE-2025-43479 MEDIUM
macOS < 14.8.2, < 15.7.2, < 26.1 - Unprotected User Data Exposure via Permissions Issue
CVSS 5.5
CVE-2025-43460 MEDIUM
iPadOS < 26.1 - Unauthenticated Exposure of Sensitive Information via Locked Device
CVSS 4.6
CVE-2025-43455 MEDIUM
iPadOS < 26.1 - Unauthorized Sensitive Information Exposure via Screenshot
CVSS 5.5
CVE-2025-43449 HIGH
iPadOS < 26.1 - Unauthorized User Tracking via Cache Handling
CVSS 7.5
CVE-2025-43411 MEDIUM
macOS < 14.8.2, < 15.7.2, < 26.1 - Unprotected User Data Exposure via Entitlement Check Bypass
CVSS 5.5
CVE-2025-43391 MEDIUM
iPadOS < 26.1 - Unauthorized Access to Sensitive User Data via Temporary File Handling
CVSS 5.5
CVE-2025-43378 MEDIUM
macOS < 15.7.2 - Unprotected User Data Exposure via Permissions Issue
CVSS 5.5
CVE-2025-43360 MEDIUM
iPadOS < 26.0 - Unintended Password Field Exposure
CVSS 5.5
CVE-2025-43345 MEDIUM
iPadOS < 18.7 - Unauthorized Sensitive Data Access
CVSS 5.5
CVE-2025-43323 HIGH
iPadOS < 26 - Unauthorized User Fingerprinting via Entitlement Check Bypass
CVSS 8.1
CVE-2025-60892 MEDIUM
Raspberry Pi Imager 1.9.6 - Info Disclosure
CVSS 6.8
CVE-2025-12616 LOW
PHPGurukul News Portal 1.0 - Info Disclosure
CVSS 3.7
CVE-2025-11983 MEDIUM
WP Discourse <2.5.9 - Info Disclosure
CVSS 4.3
CVE-2025-11377 MEDIUM
WordPress <0.92.0 - Info Disclosure
CVSS 4.3
Details
Vulnerabilities 10,108
Exploit Likelihood High
Links
MITRE CWE Entry Search this CWE With Exploits