Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-212

CWE-212

Improper Removal of Sensitive Information Before Storage or Transfer

Parent: CWE-669 - Incorrect Resource Transfer Between Spheres

The product stores, transfers, or shares a resource that contains sensitive information, but it does not properly remove that information before the product makes the resource available to unauthorized actors.

105 vulnerabilities with CWE-212

CVE-2026-20928 MEDIUM

Windows Recovery Environment Security Feature Bypass Vulnerability

CVE-2026-39937 HIGH

Global vanishing does not completely remove user email

CVE-2026-34214 HIGH

Trino: Iceberg REST catalog static and vended credentials are accessible via query JSON

CVE-2026-32891 CRITICAL

Anchorr Privilege Escalation: Jellyseerr User → Anchorr Admin via Stored XSS

CVE-2026-1182 MEDIUM

GitLab CE/EE - Auth Bypass

CVE-2026-1732 MEDIUM

GitLab CE/EE - Info Disclosure

CVE-2026-27640 HIGH

tfplan2md <1.26.1 - Info Disclosure

CVE-2025-8860 LOW

QEMU - Info Disclosure

CVE-2025-61643 MEDIUM

MediaWiki <1.39.14, 1.43.4, 1.44.1 - Info Disclosure

CVE-2025-59955 MEDIUM

Coollabs Coolify - Information Disclosure

CVE-2025-68131 HIGH

cbor2 <5.8.0 - Info Disclosure

CVE-2025-61594 HIGH

URI <1.0.4 - Auth Bypass

CVE-2025-14267 MEDIUM

M-Files Server <25.12.15491.7 - Info Disclosure

CVE-2025-65000 MEDIUM

Checkmk <=2.4.0p18, <=2.3.0 - Info Disclosure

CVE-2025-65965 HIGH

Grype <0.104.1 - Info Disclosure

CVE-2025-62483 MEDIUM

Zoom Client <6.5.10 - Info Disclosure

CVE-2025-64326 LOW

Weblate <5.14 - Info Disclosure

CVE-2025-0011 LOW

AMD Crash Defender - Info Disclosure

CVE-2025-58049 MEDIUM

XWiki Platform <16.4.8-17.4.0-rc-1 - Info Disclosure

CVE-2025-57757 MEDIUM

Contao < 5.3.38 - Information Disclosure

CVE-2025-1759 MEDIUM

IBM Concert Software <1.2 - Info Disclosure

CVE-2025-33013 MEDIUM

IBM MQ Operator - Info Disclosure

CVE-2025-53886 MEDIUM

Directus <11.9.0 - Info Disclosure

CVE-2025-48708 MEDIUM

Artifex Ghostscript <10.05.1 - Info Disclosure

CVE-2025-48066 MEDIUM

Wire-webapp - Info Disclosure

Page 1 of 5 Next

Details

Vulnerabilities 105

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy