Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-497

CWE-497

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product does not properly prevent sensitive system-level information from being accessed by unauthorized actors who do not have the same level of access to the underlying system as the product does.

311 vulnerabilities with CWE-497

CVE-2026-24998 MEDIUM

WPMU DEV - Your All-in-One WordPress Platform Hustle <7.8.9.2 - Inf...

CVE-2026-24593 MEDIUM

Strategy11 Team AWP Classifieds <4.4.3 - Info Disclosure

CVE-2026-24553 MEDIUM

Dotstore Fraud Prevention For Woocommerce <2.3.1 - Info Disclosure

CVE-2026-24536 MEDIUM

Webpushr <4.38.0 - Info Disclosure

CVE-2026-24523 MEDIUM

Marcus WP FullCalendar <1.7 - Info Disclosure

CVE-2026-24377 MEDIUM

POSIMYTH Nexter Blocks <4.6.3 - Info Disclosure

CVE-2026-22915 MEDIUM

Product <Version> - Info Disclosure

CVE-2026-0887 MEDIUM

Mozilla Firefox < 140.7.0 - Information Disclosure

CVE-2026-0494 MEDIUM

SAP Fiori App - Info Disclosure

CVE-2026-0853 MEDIUM

A-Plus Video Technologies - Info Disclosure

CVE-2026-22537 MEDIUM

System - Info Disclosure

CVE-2025-15623 CRITICAL

Sparx Pro Cloud Server reveals sensitive information to an unauthenticated user

CVE-2025-36373 MEDIUM

Incorrect administrative access control in IBM DataPower Gateway

CVE-2025-41763 MEDIUM

wwwdnload.cgi - Info Disclosure

CVE-2025-13616 MEDIUM

IBM DataStage on Cloud Pak 5.1.2-5.3.0 - Info Disclosure

CVE-2025-47378 HIGH

Shared VM Reference - Info Disclosure

CVE-2025-13691 HIGH

IBM DataStage 5.1.2-5.3.0 - Info Disclosure

CVE-2025-9986 HIGH

Vadi Corporate Information Systems Ltd. Co. DIGIKENT <13092025 - In...

CVE-2025-13651 HIGH

Microcom ZeusWeb <6.1.31 - Info Disclosure

CVE-2025-66599 MEDIUM

FAST/TOOLS <10.04 - Info Disclosure

CVE-2025-14150 MEDIUM

IBM webMethods Integration <11.1 - Info Disclosure

CVE-2025-27550 LOW

IBM Jazz Reporting Service - Info Disclosure

CVE-2025-36238 MEDIUM

IBM PowerVM Hypervisor - Info Disclosure

CVE-2025-59098 HIGH

Access Manager - Info Disclosure

CVE-2025-68046 MEDIUM

ThemeHunk Contact Form & Lead Form Elementor Builder <2.0.1 - Info ...

Previous Page 2 of 13 Next

Details

Vulnerabilities 311

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy