CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

"The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information." - Entry from the Common Weakness Enumeration