OWASP CVEs for Information Leakage in 2000