Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-212

CWE-212

Improper Removal of Sensitive Information Before Storage or Transfer

Parent: CWE-669 - Incorrect Resource Transfer Between Spheres

The product stores, transfers, or shares a resource that contains sensitive information, but it does not properly remove that information before the product makes the resource available to unauthorized actors.

115 vulnerabilities with CWE-212

CVE-2025-64326 LOW

Weblate < 5.14.1 - IP Address Exposure in Audit Log

CVE-2025-0011 LOW

AMD Crash Defender - Info Disclosure

CVE-2025-58049 MEDIUM

XWiki Platform <16.4.8-17.4.0-rc-1 - Info Disclosure

CVE-2025-57757 MEDIUM

Contao 5.0.0-5.3.37 - Unauthenticated Information Disclosure in News Module RSS Feed

CVE-2025-1759 MEDIUM

IBM Concert Software <1.2 - Info Disclosure

CVE-2025-33013 MEDIUM

IBM MQ Operator 2.0.0-2.0.29, 3.2.0-3.2.13, 3.5.1-3.6.0 - Information Disclosure via Heap Memory

CVE-2025-53886 MEDIUM

Directus 9.0.0-11.8.0 - Sensitive Information Exposure in WebHook Flow Logs

CVE-2025-48708 MEDIUM

Artifex Ghostscript <10.05.1 - Info Disclosure

CVE-2025-48066 MEDIUM

wire-webapp - Incomplete Local Data Deletion on Logout

CVE-2025-27221 LOW

URI gem < 0.11.3 - Authentication Credential Leakage via URI Handling Methods

CVE-2025-20118 MEDIUM

Cisco Application Policy Infrastructure Controller - Authenticated Sensitive Information Exposure via CLI Commands

CVE-2025-24884 MEDIUM

kube-audit-rest <1.0.16 - Info Disclosure

CVE-2024-43384 HIGH

Phoenix Contact: Improper removal of sensitive information in MGUARD products

CVE-2024-8474 HIGH

OpenVPN Connect <3.5.0 - Info Disclosure

CVE-2024-56353 MEDIUM

JetBrains TeamCity <2024.12 - Info Disclosure

CVE-2024-41156 LOW

Hitachi Energy TRO600 Series Firmware 9.1.0.0-9.2.0.5 - Authenticated Sensitive Information Exposure via Profile Export

CVE-2024-49997 HIGH

Linux Kernel - Information Disclosure via Uninitialized Memory in lantiq_etop Ethernet Driver

CVE-2024-43554 MEDIUM

Windows Kernel-Mode Driver - Information Disclosure

CVE-2024-29120 MEDIUM

Streampark <2.1.4 - Info Disclosure

CVE-2024-6055 MEDIUM

Devolutions Remote Desktop Manager < 2024.2.8.0 - Sensitive Information Exposure via Data Source Export

CVE-2024-31493 MEDIUM

FortiSOAR 7.0.0-7.3.0 - Authenticated Information Disclosure via HTTP Response

CVE-2024-32036 MEDIUM

ImageSharp <3.1.4, <2.1.8 - Info Disclosure

CVE-2024-32028 MEDIUM

OpenTelemetry dotnet - Info Disclosure

CVE-2023-52376 HIGH

Huawei EMUI and HarmonyOS - Information Disclosure in Gallery Module

CVE-2023-48308 LOW

Nextcloud Calendar <4.5.3 - Info Disclosure

Previous Page 2 of 5 Next

Details

Vulnerabilities 115

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy