CWE-201

Insertion of Sensitive Information Into Sent Data

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The code transmits data to another actor, but a portion of the data includes sensitive information that should not be accessible to that actor.

323 vulnerabilities with CWE-201
CVE-2025-64295 MEDIUM
All In One SEO Pack <4.8.6.1 - Info Disclosure
CVSS 6.5
CVE-2025-64218 HIGH
WP Chill Passster <4.2.19 - Info Disclosure
CVSS 7.5
CVE-2025-64213 HIGH
StylemixThemes MasterStudy LMS Pro - Info Disclosure
CVSS 7.5
CVE-2025-49919 MEDIUM
WPCenter eRoom <1.5.6 - Info Disclosure
CVSS 5.8
CVE-2025-49918 MEDIUM
VikBooking Hotel Booking Engine & PMS <1.8.3 - Info Disclosure
CVSS 5.9
CVE-2025-66126 MEDIUM
wowpress.host Fix Media Library <2.0.0 - Info Disclosure
CVSS 5.3
CVE-2025-66125 MEDIUM
Nitesh Ultimate Auction <4.3.2 - Info Disclosure
CVSS 5.3
CVE-2025-49300 LOW
shinetheme Traveler Option Tree <2.9 - Info Disclosure
CVSS 2.7
CVE-2025-66388 MEDIUM
Apache Airflow <3.1.4 - Info Disclosure
CVSS 6.5
CVE-2025-67721 HIGH
Aircompressor <3.3 - Info Disclosure
CVSS 7.5
CVE-2025-63071 MEDIUM
auxin-elements <2.17.12 - Info Disclosure
CVSS 5.3
CVE-2025-63007 MEDIUM
Metagauss EventPrime <4.2.4.1 - Info Disclosure
CVSS 4.3
CVE-2025-62997 MEDIUM
WP EasyCart <5.8.11 - Info Disclosure
CVSS 5.3
CVE-2025-62994 MEDIUM
WP Messiah WP AI CoPilot <1.2.8 - Info Disclosure
CVSS 4.3
CVE-2025-62109 MEDIUM
INFINITUM FORM Geo Controller <8.9.4 - Info Disclosure
CVSS 5.3
CVE-2025-66566 HIGH
lz4-java < 1.10.1 - Information Disclosure via Insufficient Output Buffer Clearing
CVE-2025-58098 HIGH
Apache HTTP Server <2.4.66 - Command Injection
CVSS 8.3
CVE-2025-13295 HIGH
Argus Technology Inc. BILGER <2.4.9 - Info Disclosure
CVSS 7.5
CVE-2025-20789 MEDIUM
Android - Local Information Disclosure in GPU pdma via Missing Bounds Check
CVSS 4.4
CVE-2025-66304 MEDIUM
Grav <1.8.0-beta.27 - Info Disclosure
CVSS 6.2
CVE-2025-66035 HIGH
Angular <19.2.16, 20.3.14, 21.0.1 - XSS
CVE-2025-65944 MEDIUM
Sentry-Javascript <10.27.0 - Info Disclosure
CVE-2025-64299 LOW
LogStare Collector - Info Disclosure
CVSS 2.7
CVE-2025-52639 LOW
HCL Connections - Sensitive Information Disclosure via Improper Data Rendering
CVSS 3.5
CVE-2025-7000 MEDIUM
GitLab CE/EE <18.3.6-18.5.2 - Info Disclosure
CVSS 4.3
Details
Vulnerabilities 323
Links
MITRE CWE Entry Search this CWE With Exploits