Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-538

CWE-538

Insertion of Sensitive Information into Externally-Accessible File or Directory

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product places sensitive information into files or directories that are accessible to actors who are allowed to have access to the files, but not to the sensitive information.

81 vulnerabilities with CWE-538

CVE-2026-7071 MEDIUM

CodeAstro Online Job Portal user-cvs file information disclosure

CVE-2026-6160 MEDIUM

code-projects Simple ChatBox Endpoint chatbox.sql SimpleChatbox_PHP file information disclosure

CVE-2026-33705 MEDIUM

Chamilo LMS has unauthenticated access to Twig template source files exposes application logic

CVE-2026-21672 HIGH

Veeam Backup & Replication - Privilege Escalation

CVE-2026-2817 MEDIUM

Spring Data Geode - Info Disclosure

CVE-2026-23838 HIGH

Tandoor Recipes <26.05 - Info Disclosure

CVE-2025-36051 MEDIUM

IBM QRadar SIEM Information Disclosure

CVE-2025-52642 LOW

HCL AION is affected by an internal filesystem paths disloser vulnerability

CVE-2025-12059 CRITICAL

Logo j-Platform <3.34.8.9 - Info Disclosure

CVE-2025-12699 MEDIUM

ZOLL ePCR IOS - SSRF

CVE-2025-36058 MEDIUM

IBM Business Automation Workflow <25.0.0-24.0.1 - Info Disclosure

CVE-2025-68429 HIGH

NPM Storybook < 7.6.21 - Information Disclosure

CVE-2025-61138 HIGH

Qlik Sense Enterprise <14.212.13 - Info Disclosure

CVE-2025-11891 MEDIUM

Shelf Planner <2.7.0 - Info Disclosure

CVE-2025-46602 MEDIUM

Dell SupportAssist OS Recovery <5.5.15.0 - Info Disclosure

CVE-2025-11079 MEDIUM

Campcodes Farm Management System 1.0 - Info Disclosure

CVE-2025-58458 MEDIUM

Jenkins Git client Plugin <6.3.2 - Info Disclosure

CVE-2025-57734 MEDIUM

JetBrains TeamCity <2025.07.1 - Info Disclosure

CVE-2025-8452 MEDIUM

Brother - Info Disclosure

CVE-2025-46820 HIGH

phpgt/Dom <4.1.8 - Info Disclosure

CVE-2025-20665 MEDIUM

Google Android - Information Disclosure

CVE-2025-31421 MEDIUM

Oblak Studio Srbtranslatin <3.2.0 - Info Disclosure

CVE-2025-31558 MEDIUM

Greg TailPress <0.4.4 - Info Disclosure

CVE-2025-31550 MEDIUM

thom4 WP-LESS <3 - Info Disclosure

CVE-2025-25586 MEDIUM

R1bbit Yimioa < 2024-07-04 - Information Disclosure

Page 1 of 4 Next

Details

Vulnerabilities 81

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy