CWE-201

Insertion of Sensitive Information Into Sent Data

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The code transmits data to another actor, but a portion of the data includes sensitive information that should not be accessible to that actor.

323 vulnerabilities with CWE-201
CVE-2025-11500 HIGH
Credentials exposure in tinycontrol devices
CVE-2025-14483 MEDIUM
IBM Sterling B2B Integrator 6.1.0.0-6.1.2.7_2 - Info Disclosure
CVSS 4.3
CVE-2025-68515 MEDIUM
WP Booking System <=2.0.19.12 - Info Disclosure
CVSS 5.8
CVE-2025-68855 MEDIUM
JobBoard Job listing <=1.2.8 - Info Disclosure
CVSS 5.9
CVE-2025-7708 MEDIUM
Atlas Educational Software Industry Ltd. Co. K12net <09022026 - Inf...
CVSS 6.8
CVE-2025-15329 MEDIUM
Tanium Threat Response 4.5.0-4.5.250 - Information Disclosure
CVSS 4.9
CVE-2025-67857 MEDIUM
moodle < 4.1.21 and >= 0 < 4.1.22 - Unauthenticated User Identifier Exposure in Anonymous Assignment Submission URLs
CVSS 4.3
CVE-2025-68035 HIGH
Tabby Checkout <5.8.4 - Info Disclosure
CVSS 7.5
CVE-2025-68006 MEDIUM
Deetronix Booking Ultra Pro <1.1.23 - Info Disclosure
CVSS 6.5
CVE-2025-63019 MEDIUM
Cookies and Content Security Policy <2.35 - Info Disclosure
CVSS 5.3
CVE-2025-67931 HIGH
AITpro BulletProof Security <6.9 - Info Disclosure
CVSS 7.5
CVE-2025-59955 MEDIUM
Coolify <= 4.0.0-beta.420.8 - Authenticated Information Disclosure via Team Members API
CVSS 5.7
CVE-2025-68033 HIGH
Brecht Custom Related Posts <1.8.0 - Info Disclosure
CVSS 7.5
CVE-2025-68029 MEDIUM
WP Swings Wallet System for WooCommerce <2.7.2 - Info Disclosure
CVSS 6.3
CVE-2025-68014 MEDIUM
Awethemes AweBooking <3.2.26 - Info Disclosure
CVSS 6.5
CVE-2025-62126 MEDIUM
Varnish/Nginx Proxy Caching <1.8.4 - Info Disclosure
CVSS 5.3
CVE-2025-59136 MEDIUM
Gerencianet Oficial <3.1.3 - Info Disclosure
CVSS 5.3
CVE-2025-62139 MEDIUM
Vladimir Statsenko Terms <3.4.9 - Info Disclosure
CVSS 5.3
CVE-2025-59003 MEDIUM
Inkthemescom Black Rider <1.2.3 - Info Disclosure
CVSS 5.8
CVE-2025-68989 MEDIUM
Contact Form 7 Extension For Mailchimp <0.9.49 - Info Disclosure
CVSS 4.3
CVE-2025-68040 MEDIUM
weDevs WP Project Manager <3.0.1 - Info Disclosure
CVSS 6.5
CVE-2025-68516 MEDIUM
Essekia Tablesome <1.1.36 - Info Disclosure
CVSS 5.0
CVE-2025-62998 MEDIUM
WP Messiah WP AI CoPilot <1.2.7 - Info Disclosure
CVSS 5.0
CVE-2025-14823 MEDIUM
ConnectWise ScreenConnect < 1.0.12 - Unauthenticated Sensitive Information Exposure via Certificate Signing Extension
CVSS 5.3
CVE-2025-66116 HIGH
UserElements Ultimate Member Widgets for Elementor <2.4 - Info Disc...
CVSS 7.5
Details
Vulnerabilities 323
Links
MITRE CWE Entry Search this CWE With Exploits