Description
Source code on a web server or repository often contains sensitive information and should generally not be accessible to users.
Extended Description
There are situations where it is critical to remove source code from an area or server. For example, obtaining Perl source code on a system allows an attacker to understand the logic of the script and extract extremely useful information such as code bugs or logins and passwords.
CVE vulnerabilities with CWE-540 (30)
9.3
CVSS
CRITICAL
CVE-2025-23215
pub. 2025-01-31
8.2
CVSS
HIGH
CVE-2025-26013
pub. 2025-02-21
7.9
CVSS
HIGH
CVE-2024-38647
pub. 2024-11-22
7.8
CVSS
HIGH
CVE-2023-39250
pub. 2023-08-16
7.8
CVSS
HIGH
CVE-2021-28805
pub. 2021-06-11
7.5
CVSS
HIGH
CVE-2026-45728
pub. 2026-05-26
7.5
CVSS
HIGH
CVE-2026-4155
pub. 2026-04-11
7.5
CVSS
HIGH
CVE-2025-49182
pub. 2025-06-12
7.5
CVSS
HIGH
CVE-2024-1272
pub. 2024-06-05
6.9
CVSS
MEDIUM
CVE-2026-35383
pub. 2026-04-02
6.8
CVSS
MEDIUM
CVE-2024-38327
pub. 2025-07-10
6.5
CVSS
MEDIUM
CVE-2021-34638
pub. 2021-08-05
5.3
CVSS
MEDIUM
CVE-2025-0923
pub. 2025-06-11
5.3
CVSS
MEDIUM
CVE-2024-35144
pub. 2025-01-25
5.3
CVSS
MEDIUM
CVE-2024-2265
pub. 2024-03-07
5.3
CVSS
MEDIUM
CVE-2023-30802
pub. 2023-10-10
5.3
CVSS
MEDIUM
CVE-2023-23448
pub. 2023-05-15
5.1
CVSS
MEDIUM
CVE-2025-3403
pub. 2025-04-08
4.9
CVSS
MEDIUM
CVE-2021-34744
pub. 2021-10-06
4.9
CVSS
MEDIUM
CVE-2021-34757
pub. 2021-10-06
Showing 20 of 30 vulnerabilities