CWE-209 - CERT CVE

CWE-209 - Generation of Error Message Containing Sensitive Information

The software generates an error message that includes sensitive information about its environment, users, or associated data.

CAPEC ID Naziv
CAPEC-214 Fuzzing for garnering J2EE/.NET-based stack traces, for application mapping
CAPEC-215 Fuzzing and observing application log data/errors for application mapping
CAPEC-463 Padding Oracle Crypto Attack
CAPEC-54 Query System for Information
CAPEC-7 Blind SQL Injection