Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-538

CWE-538

Insertion of Sensitive Information into Externally-Accessible File or Directory

Parent: CWE-200 - Exposure of Sensitive Information to an Unauthorized Actor

The product places sensitive information into files or directories that are accessible to actors who are allowed to have access to the files, but not to the sensitive information.

81 vulnerabilities with CWE-538

CVE-2022-26329 LOW

NetIQ Identity Manager <4.8.5 - Info Disclosure

CVE-2022-23508 HIGH

Weave GitOps - Privilege Escalation

CVE-2022-44623 MEDIUM

JetBrains TeamCity <2022.10 - Info Disclosure

CVE-2022-20864 MEDIUM

Cisco IOS XE - Info Disclosure

CVE-2022-0013 MEDIUM

Paloaltonetworks Cortex Xdr Agent < 5.0.12 - Information Disclosure

CVE-2021-4471 HIGH

TG8 Firewall - Info Disclosure

CVE-2021-40363 HIGH

SIMATIC PCS 7, WinCC - Info Disclosure

CVE-2021-3709 MEDIUM

Canonical Apport - Path Traversal

CVE-2021-32822 MEDIUM

npm hbs - Info Disclosure

CVE-2021-1406 MEDIUM

Cisco Unified Communications Manager - Information Disclosure

CVE-2021-21250 HIGH

OneDev <4.0.3 - Info Disclosure

CVE-2020-37104 HIGH

ASTPP 4.0.1 - Info Disclosure

CVE-2019-25706 HIGH

Across DR-810 ROM-0 Unauthenticated File Disclosure

CVE-2019-15793 MEDIUM

Linux kernel <5.3 - Privilege Escalation

CVE-2019-6851 HIGH

Modicon - Info Disclosure

CVE-2019-7618 MEDIUM

Elastic Code <7.3.2 - Info Disclosure

CVE-2019-12623 MEDIUM

Cisco NFVIS - Info Disclosure

CVE-2019-10320 MEDIUM

Jenkins Credentials Plugin <2.1.18 - Info Disclosure

CVE-2018-20932 LOW

cPanel <70.0.23 - Info Disclosure

CVE-2018-11798 MEDIUM

Apache Thrift Node.js <0.11.0 - Path Traversal

CVE-2018-16970 MEDIUM

Wisetail LE <4.11.6 - IDOR

CVE-2018-10590 HIGH

Advantech WebAccess <8.3.1 - Info Disclosure

CVE-2018-4847 MEDIUM

SIMATIC WinCC OA Operator iOS App < V1.4 - Info Disclosure

CVE-2017-5387 LOW

Firefox < 51 - Info Disclosure

CVE-2017-16770 MEDIUM

Synology Surveillance Station <8.1.2-5469 - Info Disclosure

Previous Page 3 of 4 Next

Details

Vulnerabilities 81

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy