CWE-212
Improper Removal of Sensitive Information Before Storage or Transfer
The product stores, transfers, or shares a resource that contains sensitive information, but it does not properly remove that information before the product makes the resource available to unauthorized actors.
We have discovered 1,655 live websites that are affected by CWE-212.
CVEs
- Count - 4
CWE References
Website Distribution by Country
Number of websites using CWE-212 United States | 308 websites |
 Germany | 523 websites |
 Ukraine | 138 websites |
 France | 134 websites |
 Russia | 80 websites |
 Poland | 70 websites |
 Switzerland | 54 websites |
 Czech Republic | 34 websites |
 Italy | 31 websites |
 GB | 25 websites |
Website Distribution by TLD
Number of websites using CWE-212| .de | 378 websites |
| .com | 335 websites |
| .fr | 103 websites |
| .net | 84 websites |
| .org | 75 websites |
| .ru | 67 websites |
| .pl | 54 websites |
| .ch | 50 websites |
| .eu | 34 websites |
| .cz | 31 websites |
Newest CVEs
List of the most recent CVEs that are part of CWE-212| Discovered | CVE | Description | Websites |
|---|---|---|---|
| Jun, 2026 | CVE-2026-46657 | Bludit's persistent authentication tokens not revoked upon account disablement | 1,303 |
| Nov, 2025 | CVE-2025-64326 | Weblate leaks the IP of project members inviting users to assume reviewer roles in Audit log | 62 |
| Aug, 2025 | CVE-2025-58049 | XWiki PDF export jobs store sensitive cookies unencrypted in job statuses | 33 |
| Apr, 2023 | CVE-2023-28834 | Full path of data directory exposed to Nextcloud server users | 257 |
The most widespread CVEs
List of the most common CVEs that are part of CWE-212| Discovered | CVE | Description | Websites |
|---|---|---|---|
| Jun, 2026 | CVE-2026-46657 | Bludit's persistent authentication tokens not revoked upon account disablement | 1,303 |
| Apr, 2023 | CVE-2023-28834 | Full path of data directory exposed to Nextcloud server users | 257 |
| Nov, 2025 | CVE-2025-64326 | Weblate leaks the IP of project members inviting users to assume reviewer roles in Audit log | 62 |
| Aug, 2025 | CVE-2025-58049 | XWiki PDF export jobs store sensitive cookies unencrypted in job statuses | 33 |
Websites affected by CWE-212
Top websites that are affected by CWE-212. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| ******.de | Germany | *,*** | |
| *******.de | Germany | *,*** | |
| *************.de | Germany | *,*** | |
| *****************.jetzt | Germany | **,*** | |
| ***********.ch | Switzerland | **,*** | |
| ************.io | United States | **,*** | |
| ******.***.**.***.es |  Spain | ***,*** | |
| ********.com | United States | ***,*** | |
| ************.com | United States | ***,*** | |
| *********.com | United States | ***,*** |