CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,205 vulnerabilities with CWE-200
CVE-2011-3719
CodeIgniter 1.7.2 - Info Disclosure
CVE-2011-3718
CMS Made Simple 1.9.2 - Exposure of Sensitive Information via Direct PHP File Request
CVE-2011-3717
ClipBucket 2.0.9 - Exposure of Sensitive Information via Direct PHP File Request
CVE-2011-3716
Claroline 1.9.7 - Exposure of Sensitive Information via Direct PHP File Request
CVE-2011-3715
ClanTiger 1.1.3 - Exposure of Sensitive Information via Direct PHP File Request
CVE-2011-3714
ClanSphere 2010.0 - Info Disclosure
CVE-2011-3713
cFTP r80 - Exposure of Sensitive Information via Direct PHP File Request
CVE-2011-3712
CakePHP 1.3.7 - Exposure of Sensitive Information via Direct Request to PHP Files
CVE-2011-3711
BIGACE 2.7.5 - Exposure of Sensitive Information via Direct Request to PHP Files
CVE-2011-3710
bbPress 1.0.2 - Exposure of Sensitive Information via Direct File Request
CVE-2011-3709
b2evolution <3.3.3 - Info Disclosure
CVE-2011-3708
Automne 4.0.2 - Exposure of Sensitive Information via Direct Request to PHP Files
CVE-2011-3707
JanRain PHP OpenID library (aka php-openid) 2.2.2 - Info Disclosure
CVE-2011-3706
ATutor 2.0 - Exposure of Sensitive Information via Direct Request to PHP Files
CVE-2011-3705
Arctic Fox CMS 0.9.4 - Info Disclosure
CVE-2011-3704
appRain 0.1.0 - Exposure of Sensitive Information via Direct PHP File Request
CVE-2011-3703
anecms 1.0 - Exposure of Sensitive Information via Direct Request to PHP Files
CVE-2011-3702
Ananta Gazelle 1.0 - Info Disclosure
CVE-2011-3701
AlegroCart <1.2.3 - Info Disclosure
CVE-2011-3700
Advanced Electron Forum (AEF) 1.0.8 - Info Disclosure
CVE-2011-3699
ADOdb Library <5.11 - Info Disclosure
CVE-2011-3698
AdaptCMS 2.0.2 Beta - Info Disclosure
CVE-2011-3697
Achievo 1.4.5 - Exposure of Sensitive Information via Direct PHP File Request
CVE-2011-3696
60cycleCMS 2.5.2 - Exposure of Sensitive Information via Direct Request to PHP Files
CVE-2011-3695
111WebCalendar <1.2.3 - Info Disclosure
Details
Vulnerabilities 10,205
Exploit Likelihood High