CWE-598
Use of GET Request Method With Sensitive Query Strings
The web application uses the HTTP GET method to process a request and includes sensitive information in the query string of that request.
65 vulnerabilities with CWE-598
CVE-2025-41772
HIGH
UBR - Info Disclosure
CVSS 7.5
CVE-2026-26196
MEDIUM
Gogs <0.14.2 - Info Disclosure
CVSS 5.3
CVE-2025-59873
MEDIUM
HCL ZIE for Web v16 - Info Disclosure
CVSS 5.9
CVE-2026-26721
HIGH
Key Systems GFMS 20230721a - Info Disclosure
CVSS 7.1
CVE-2025-69634
CRITICAL
Dolibarr ERP & CRM <22.0.9 - CSRF
CVSS 9.0
CVE-2026-23846
HIGH
Tugtainer <1.16.1 - Info Disclosure
CVSS 8.1
CVE-2026-22644
MEDIUM
Certain Requests - Open Redirect
CVSS 5.3
CVE-2025-69270
CRITICAL
Broadcom DX NetOps Spectrum <24.3.8 - Info Disclosure
CVSS 9.8
CVE-2025-36371
MEDIUM
IBM i <7.7 - Info Disclosure
CVSS 6.5
CVE-2025-31954
MEDIUM
Hcltech Dryice Iautomate - Information Disclosure
CVSS 5.4
CVE-2025-32916
MEDIUM
Checkmk GmbH Checkmk <2.4.0p13-2.1.0 - Info Disclosure
CVSS 4.3
CVE-2025-58584
MEDIUM
HTTP Request - Info Disclosure
CVSS 5.3
CVE-2025-56551
HIGH
DirectAdmin <1.680 - XSS
CVSS 8.2
CVE-2025-50709
MEDIUM
Perplexity AI GPT-4 - Info Disclosure
CVSS 4.3
CVE-2025-50110
HIGH
AVTECH EagleEyes Lite <2.0.0 - Info Disclosure
CVSS 8.8
CVE-2025-54542
MEDIUM
QuickCMS <6.8 - Info Disclosure
CVSS 5.5
CVE-2025-8997
OpenText Enterprise Security Manager - Info Disclosure
CVE-2025-57800
HIGH
Audiobookshelf <2.26.3 - Open Redirect
CVSS 8.8
CVE-2025-51651
MEDIUM
Mccms <2.7.0 - Info Disclosure
CVSS 5.5
CVE-2025-40742
MEDIUM
SIPROTEC 5 - Info Disclosure
CVSS 5.3
CVE-2025-52901
MEDIUM
File Browser <2.33.9 - Info Disclosure
CVSS 4.5
CVE-2025-49188
MEDIUM
Application <unknown> - Info Disclosure
CVSS 5.3
CVE-2025-3943
MEDIUM
Tridium Niagara <4.14.2-4.15.1-4.10.11 - Parameter Injection
CVSS 4.1
CVE-2024-9877
MEDIUM
ABB ANC <1.1.4 - Info Disclosure
CVSS 4.3
CVE-2025-3637
LOW
Moodle < 4.3.12 - CSRF
CVSS 3.1
Details
Vulnerabilities
65