Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-497

CWE-497

Exposure of Sensitive System Information to an Unauthorized Control Sphere

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product does not properly prevent sensitive system-level information from being accessed by unauthorized actors who do not have the same level of access to the underlying system as the product does.

333 vulnerabilities with CWE-497

CVE-2025-9110 HIGH

QNAP QTS and QuTS hero - Exposure of Sensitive System Information

CVE-2025-62083 MEDIUM

WP Messiah BoomDevs WordPress Coming Soon Plugin <1.0.4 - Info Disc...

CVE-2025-49340 MEDIUM

Digages Direct Payments WP - Info Disclosure

CVE-2025-62143 MEDIUM

nicashmu Post Video Players <1.163 - Info Disclosure

CVE-2025-62114 MEDIUM

Marcelo Torres Download Media Library <0.2.1 - Info Disclosure

CVE-2025-69026 MEDIUM

Roxnor PopupKit <2.1.5 - Info Disclosure

CVE-2025-69025 MEDIUM

Poptics <= 1.0.20 - Sensitive Data Exposure

CVE-2025-68988 MEDIUM

o2oe E-Invoice App Malaysia <1.1.0 - Info Disclosure

CVE-2025-36229 LOW

IBM Aspera Faspex <5.0.14.1 - Info Disclosure

CVE-2025-68943 MEDIUM

Gitea < 1.21.8 - Unauthorized Exposure of User Login Times via Explore Users Sort Order

CVE-2025-68606 MEDIUM

WPXPO PostX <5.0.3 - Info Disclosure

CVE-2025-68576 MEDIUM

Virusdie <= 1.1.6 - Exposure of Sensitive System Information

CVE-2025-68494 MEDIUM

Leap13 Premium Addons for Elementor <4.11.53 - Info Disclosure

CVE-2025-67621 MEDIUM

8 Day Week Print Workflow <1.2.6 - Info Disclosure

CVE-2025-68551 MEDIUM

Vikas Ratudi VPSUForm <3.2.24 - Info Disclosure

CVE-2025-11545 CRITICAL

Sharp Display Solutions - Info Disclosure

CVE-2025-62955 MEDIUM

HappyDevs TempTool <1.3.1 - Info Disclosure

CVE-2025-67546 MEDIUM

weDevs WP ERP <1.16.6 - Info Disclosure

CVE-2025-64272 MEDIUM

GetResponse Email marketing <1.5.3 - Info Disclosure

CVE-2025-64270 MEDIUM

Masteriyo LMS <2.0.3 - Info Disclosure

CVE-2025-64258 HIGH

wpweb Follow My Blog Post <= 2.3.9 - Info Disclosure

CVE-2025-49914 MEDIUM

MotoPress mp-restaurant-menu <2.4.7 - Info Disclosure

CVE-2025-47319 MEDIUM

Qualcomm Firmware - Exposure of Sensitive System Information via TA-to-TA Communication APIs

CVE-2025-34442 HIGH

AVideo < 20.1 - Sensitive System Information Exposure via Public API Endpoints

CVE-2025-67948 MEDIUM

SendPulse Email Marketing Newsletter <= 2.2.1 - Info Disclosure

Previous Page 4 of 14 Next

Details

Vulnerabilities 333

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy