CWE-201

Insertion of Sensitive Information Into Sent Data

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The code transmits data to another actor, but a portion of the data includes sensitive information that should not be accessible to that actor.

323 vulnerabilities with CWE-201
CVE-2025-2615 MEDIUM
GitLab <18.3.6-18.5.2 - Info Disclosure
CVSS 4.3
CVE-2025-64748 MEDIUM
Directus <11.13.0 - Info Disclosure
CVSS 6.5
CVE-2025-64407 MEDIUM
Apache OpenOffice <= 4.1.15 - Information Disclosure via External Link URI Scheme
CVSS 5.3
CVE-2025-59509 MEDIUM
Windows Speech - Information Disclosure via Sensitive Data Insertion
CVSS 5.5
CVE-2025-64502 MEDIUM
Parse Server <8.5.0-alpha.5 - Info Disclosure
CVE-2025-62039 HIGH
AYS Pro AI ChatBot - Info Disclosure
CVSS 7.5
CVE-2025-62038 MEDIUM
Sovlix MeetingHub <1.23.9 - Info Disclosure
CVSS 6.5
CVE-2025-60188 HIGH
Atarim <= 4.2.1 - Sensitive Data Exposure via Embedded Data Retrieval
CVSS 7.5
CVE-2025-55155 MEDIUM
MantisBT < 2.27.2 - Information Disclosure via Unvalidated Email Address Change
CVSS 5.4
CVE-2025-64351 MEDIUM
Rank Math SEO <1.0.252.1 - Info Disclosure
CVSS 4.3
CVE-2025-62979 MEDIUM
airesvsg ACF to REST API <3.3.4 - Info Disclosure
CVSS 5.3
CVE-2025-62947 MEDIUM
Publitio <= 2.2.5 - Sensitive Data Exposure via Embedded Data Retrieval
CVSS 5.0
CVE-2025-62895 MEDIUM
Atarim Visual Collaboration <4.2 - Info Disclosure
CVSS 5.3
CVE-2025-62062 MEDIUM
ThemeRuby Easy Post Submission <=1.7.0 - Info Disclosure
CVSS 5.5
CVE-2025-62026 MEDIUM
Blockspare <= 3.2.13.2 - Sensitive Data Exposure via Embedded Data Retrieval
CVSS 4.3
CVE-2025-59579 HIGH
Simple Job Board <2.13.7 - Info Disclosure
CVSS 7.5
CVE-2025-59578 MEDIUM
ShopMagic <= 4.5.6 - Sensitive Data Exposure via Embedded Data Retrieval
CVSS 5.8
CVE-2025-53232 MEDIUM
inkthemes WP Gmail SMTP <1.0.7 - Info Disclosure
CVSS 5.8
CVE-2025-53218 MEDIUM
Saad Iqbal AppExperts <1.4.5 - Info Disclosure
CVSS 5.8
CVE-2025-59268 MEDIUM
F5 BIG-IP 15.1.0-15.1.10.8 - Unauthenticated Sensitive Information Exposure via Configuration Utility
CVSS 5.3
CVE-2025-43825 MEDIUM
Liferay Portal <7.4.3.132 & DXP - Info Disclosure
CVSS 6.5
CVE-2025-11025 MEDIUM
Vimesoft Corporate Messaging Platform <2.0.0 - Info Disclosure
CVSS 5.3
CVE-2025-9958 HIGH
GitLab CE/EE <18.2.7-18.4.1 - Info Disclosure
CVSS 7.7
CVE-2025-60140 MEDIUM
The Tribal <1.3.3 - Info Disclosure
CVSS 5.3
CVE-2025-60125 MEDIUM
FoodBook <= 4.7.6 - Sensitive Data Exposure via Embedded Data Retrieval
CVSS 5.3
Details
Vulnerabilities 323
Links
MITRE CWE Entry Search this CWE With Exploits