CWE-598
Use of HTTP Request With Sensitive Query String
The web application uses an HTTP method to process a request, but the request includes sensitive information in the query string.
74 vulnerabilities with CWE-598
CVE-2025-8997
MEDIUM
OpenText Enterprise Security Manager - Info Disclosure
CVE-2025-57800
HIGH
Audiobookshelf <2.26.3 - Open Redirect
CVSS 8.8
CVE-2025-51651
MEDIUM
Mccms <2.7.0 - Info Disclosure
CVSS 5.5
CVE-2025-40742
MEDIUM
SIPROTEC 5 - Info Disclosure
CVSS 5.3
CVE-2025-52901
MEDIUM
File Browser <2.33.9 - Info Disclosure
CVSS 4.5
CVE-2025-49188
MEDIUM
Sick Field Analytics - Information Disclosure via URL Parameters
CVSS 5.3
CVE-2025-3943
MEDIUM
Tridium Niagara <4.14.2-4.15.1-4.10.11 - Parameter Injection
CVSS 4.1
CVE-2025-3637
LOW
Moodle < 4.3.12 - CSRF
CVSS 3.1
CVE-2025-32021
LOW
Weblate <5.11 - Info Disclosure
CVSS 2.2
CVE-2025-24948
MEDIUM
JotUrl 2.0 - Info Disclosure
CVSS 6.5
CVE-2025-2356
LOW
BlackVue App <3.65 - SSRF
CVSS 3.7
CVE-2025-1738
MEDIUM
Trivision Camera NC227WF <5.8.0 - Info Disclosure
CVSS 6.2
CVE-2025-26058
MEDIUM
Webkul QloApps <1.6.1 - Info Disclosure
CVSS 4.2
CVE-2025-26473
HIGH
Mojave Inverter - Info Disclosure
CVSS 7.5
CVE-2025-0730
LOW
TP-Link TL-SG108E <1.0.0 Build 20201208 Rel. 40304 - Use After Free
CVSS 3.7
CVE-2025-22387
HIGH
Optimizely Configured Commerce <5.2.2408 - Info Disclosure
CVSS 7.5
CVE-2024-9877
MEDIUM
ABB ANC <1.1.4 - Info Disclosure
CVSS 4.3
CVE-2024-12012
MEDIUM
130.8005 TCP/IP Gateway <12h - Info Disclosure
CVSS 5.7
CVE-2024-41738
MEDIUM
IBM TXSeries for Multiplatforms 10.1 - Info Disclosure
CVSS 5.9
CVE-2024-38863
HIGH
Checkmk - CSRF
CVSS 7.5
CVE-2024-32931
MEDIUM
exacqVision - Info Disclosure
CVSS 5.7
CVE-2024-23766
HIGH
HMS Anybus X-Gateway AB7832-F - DoS
CVSS 7.5
CVE-2024-31206
HIGH
dectalk-tts <1.0.1 - Info Disclosure
CVSS 8.2
CVE-2024-2745
LOW
Rapid7 InsightVM <6.6.244 - Info Disclosure
CVSS 3.3
CVE-2024-28238
LOW
Monospace Directus < 10.10.0 - Information Disclosure
CVSS 2.3
Details
Vulnerabilities
74