Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-212

CWE-212

Improper Removal of Sensitive Information Before Storage or Transfer

Parent: CWE-669 - Incorrect Resource Transfer Between Spheres

The product stores, transfers, or shares a resource that contains sensitive information, but it does not properly remove that information before the product makes the resource available to unauthorized actors.

115 vulnerabilities with CWE-212

CVE-2023-41967 LOW

Gallagher Controller 6000 <8.70.231204a - Info Disclosure

CVE-2023-3006 MEDIUM

Linux Kernel - Information Disclosure via Spectre-BHB Branch History Injection

CVE-2023-28834 LOW

Nextcloud Server <24.0.6 & 25.0.4 - Info Disclosure

CVE-2023-1637 MEDIUM

Linux Kernel - Information Exposure via Suspend-to-RAM Resume

CVE-2022-3460 HIGH

Octopus Server 2018.1.0-2022.3.10750 - Sensitive Information Exposure in Variable Preview

CVE-2022-4734 HIGH

GitHub usememos/memos <0.9.1 - Info Disclosure

CVE-2022-39393 HIGH

Wasmtime <2.0.2, <1.0.2 - Info Disclosure

CVE-2022-0171 MEDIUM

Linux Kernel < 5.18 - Denial of Service via KVM SEV API

CVE-2022-2818 CRITICAL

GitHub cockpit-hq/cockpit <2.2.2 - Info Disclosure

CVE-2022-31162 HIGH

Slack Morphism <0.41.0 - Info Disclosure

CVE-2022-29900 MEDIUM

AMD APU Firmware - Arbitrary Speculative Code Execution

CVE-2022-33740 HIGH

Linux - Info Disclosure

CVE-2022-31112 HIGH

parse-server < 4.10.13 - Information Exposure via LiveQuery Protected Fields

CVE-2022-31090 HIGH

Guzzle < 6.5.8 - Sensitive Information Exposure via Redirect Authorization Header Leak

CVE-2022-31043 HIGH

Guzzle < 6.5.7 - Sensitive Information Exposure via HTTPS to HTTP Redirect

CVE-2022-31042 HIGH

Guzzle < 6.5.7 - Sensitive Cookie Header Exposure via Redirect Handling

CVE-2022-1893 MEDIUM

GitHub polonel/trudesk <1.2.3 - Info Disclosure

CVE-2022-30618 HIGH

Strapi 3.0.0-3.6.9 and 4.0.0-4.1.8 - Authenticated Sensitive Data Exposure via Admin Panel Relationships

CVE-2022-30617 HIGH

Strapi 3.0.0-3.6.9 and <4.0.0-beta.15 - Authenticated Sensitive Information Exposure via Admin Panel Relationships

CVE-2022-1650 HIGH

GitHub eventsource <2.0.2 - Info Disclosure

CVE-2022-24798 HIGH

Internet Routing Registry daemon <4 - Info Disclosure

CVE-2022-24719 LOW

Fluture-Node 4.0.0/1 - Info Disclosure

CVE-2022-25187 MEDIUM

Jenkins Support Core Plugin <2.79 - Info Disclosure

CVE-2022-23633 HIGH

Rails 5.0.0-5.2.6.1 - Information Disclosure via Thread Local State Leak

CVE-2022-22779 LOW

Keybase Clients <5.9.0 - Info Disclosure

Previous Page 3 of 5 Next

Details

Vulnerabilities 115

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy