CWE-200

High likelihood

Exposure of Sensitive Information to an Unauthorized Actor

Parent: CWE-668 - Exposure of Resource to Wrong Sphere

The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

10,215 vulnerabilities with CWE-200
CVE-2008-2049
E-Post Mail Server 4.10 - Unauthenticated Sensitive Information Exposure via APOP Command
CVE-2008-2028
miniBB < 2.2 - Exposure of Sensitive Information via glang Parameter
CVE-2008-2027
RSA Authentication Agent 5.3.0.258 - Open Redirect
CVE-2008-2018
PHPizabi 0.848b C1 HFP3 - Authenticated Exposure of Sensitive Information via Macro Expansion
CVE-2008-1924
phpMyAdmin <2.11.5.2 - Info Disclosure
CVE-2008-1155
Cisco NAC Appliance <4.1.2 - Info Disclosure
CVE-2008-1782
Advanced Software Engineering ChartDirector 4.1 - Info Disclosure
CVE-2008-1752
ezRADIUS 0.1 - Exposure of Sensitive Information via Direct Request
CVE-2008-1717
WoltLab Community Framework <1.0.6 - Info Disclosure
CVE-2008-1618
Watchguard Firebox <10 - Info Disclosure
CVE-2008-1014
Apple QuickTime < 7.4.5 - Information Disclosure via External URL Handling
CVE-2008-1680
PHP-Nuke Platinum 7.6.b.5 - Info Disclosure
CVE-2008-1598
IBM AIX 6.1 - Kernel Memory Exposure via ProbeVue Privilege
CVE-2008-1557
BolinOS 4.6.1 - Exposure of Sensitive Information via phpinfo Page
CVE-2008-1156
Cisco IOS 12.0-12.4 - Unauthenticated Multicast State Manipulation via MDT Data Join Message
CVE-2008-1523
ZyXEL Prestige 660/661/662 3.40(AGD.2)-3.40(AHQ.3) - Authenticated Credential Exposure
CVE-2008-1506
peel < 3.0 - Exposure of Sensitive Information via phpinfo.php
CVE-2008-1290
ViewVC - Exposure of Sensitive Information via Search Results
CVE-2008-1291
ViewVC - Exposure of Sensitive Information via CVSROOT Folder
CVE-2008-1292
ViewVC - Exposure of Sensitive Information via Revision Metadata
CVE-2008-1005
Safari - Password Exposure via Kotoeri Input Method Reverse Conversion
CVE-2008-0052
Apple Mac OS X 10.4.11 - Unauthorized File Access via .ief File Handling
CVE-2008-0990
Mac OS X 10.4.11 - Denial of Service via Spoofed Mach Port Death Notifications
CVE-2008-0993
Podcast Producer for Mac OS X 10.5.2 - Local Password Exposure via Command Line Arguments
CVE-2008-0994
Mac OS X 10.5.2 - Weak PDF Encryption via 40-bit RC4
Details
Vulnerabilities 10,215
Exploit Likelihood High