目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21002

access:pre-auth 类型相关 21002 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2026-1994 WordPress plugin s2Member 安全漏洞 — s2Member – Excellent for All Kinds of Memberships, Content Restriction Paywalls & Member Access SubscriptionsCWE-269 9.8 Critical2026-02-19
CVE-2026-2731 DynamicWeb 安全漏洞 — DynamicWeb 9CWE-22 9.1AICriticalAI2026-02-19
CVE-2026-0722 WordPress plugin Shield Security SQL注入漏洞 — Shield: Blocks Bots, Protects Users, and Prevents Security BreachesCWE-89 6.5 Medium2026-02-19
CVE-2025-13851 WordPress plugin Buyent Classified 安全漏洞 — BuyentCWE-269 9.8 Critical2026-02-19
CVE-2026-1455 WordPress plugin Whatsiplus Scheduled Notification for Woocommerce 跨站请求伪造漏洞 — Whatsiplus Scheduled Notification for WoocommerceCWE-352 4.3 Medium2026-02-19
CVE-2026-0926 WordPress plugin Prodigy Commerce 安全漏洞 — Prodigy CommerceCWE-98 9.8 Critical2026-02-19
CVE-2026-0561 WordPress plugin Shield Security 跨站脚本漏洞 — Shield: Blocks Bots, Protects Users, and Prevents Security BreachesCWE-79 6.1 Medium2026-02-19
CVE-2025-14452 WordPress plugin WP Customer Reviews 跨站脚本漏洞 — WP Customer ReviewsCWE-79 7.2 High2026-02-19
CVE-2025-14167 WordPress plugin Remove Post Type Slug 跨站请求伪造漏洞 — Remove Post Type SlugCWE-352 4.3 Medium2026-02-19
CVE-2025-13563 WordPress plugin Lizza LMS Pro 安全漏洞 — Lizza LMS ProCWE-269 9.8 Critical2026-02-19
CVE-2025-14076 WordPress plugin iXML 跨站脚本漏洞 — iXML – Google XML sitemap generatorCWE-79 6.1 Medium2026-02-19
CVE-2025-13438 WordPress plugin Page Title, Description & Open Graph Updater 跨站请求伪造漏洞 — Page Title, Description & Open Graph UpdaterCWE-352 4.3 Medium2026-02-19
CVE-2025-13842 WordPress plugin Breadcrumb NavXT 安全漏洞 — Breadcrumb NavXTCWE-639 5.3 Medium2026-02-19
CVE-2025-13864 WordPress plugin Breeze - WordPress Cache Plugin 安全漏洞 — Breeze CacheCWE-862 5.3 Medium2026-02-19
CVE-2025-13930 WordPress plugin Checkout Field Manager (Checkout Manager) for WooCommerce 安全漏洞 — Checkout Field Manager (Checkout Manager) for WooCommerceCWE-862 5.3 Medium2026-02-19
CVE-2026-1405 WordPress plugin Slider Future 代码问题漏洞 — Slider FutureCWE-434 9.8 Critical2026-02-19
CVE-2025-13413 WordPress plugin Country Blocker for AdSense 跨站请求伪造漏洞 — Country Blocker for AdSenseCWE-352 4.3 Medium2026-02-19
CVE-2025-14294 WordPress plugin Razorpay for WooCommerce 访问控制错误漏洞 — Razorpay for WooCommerceCWE-306 5.3 Medium2026-02-19
CVE-2026-2502 WordPress plugin xmlrpc attacks blocker 跨站脚本漏洞 — xmlrpc attacks blockerCWE-79 6.1 Medium2026-02-19
CVE-2025-12500 WordPress plugin Checkout Field Manager (Checkout Manager) for WooCommerce 代码问题漏洞 — Checkout Field Manager (Checkout Manager) for WooCommerceCWE-434 5.3 Medium2026-02-19
CVE-2025-13113 WordPress plugin Web Accessibility by accessiBe 信息泄露漏洞 — Web Accessibility by accessiBeCWE-200 5.3 Medium2026-02-19
CVE-2025-12821 WordPress plugin NewsBlogger 跨站请求伪造漏洞 — NewsBloggerCWE-352 8.8 High2026-02-19
CVE-2025-12882 WordPress plugin Clasifico Listing 安全漏洞 — Clasifico ListingCWE-269 9.8 Critical2026-02-19
CVE-2025-12707 WordPress plugin Library Management System SQL注入漏洞 — Library Management SystemCWE-89 7.5 High2026-02-19
CVE-2025-13079 WordPress plugin Popup Builder – Create highly converting, mobile friendly marketing popups 安全漏洞 — Popup Builder – Create highly converting, mobile friendly marketing popups.CWE-1241 5.3 Medium2026-02-19
CVE-2025-11754 WordPress plugin GDPR Cookie Consent 安全漏洞 — Cookie Banner for GDPR / CCPA – WPLP Cookie ConsentCWE-862 7.5 High2026-02-19
CVE-2025-12172 WordPress plugin Mailchimp List Subscribe Form 跨站请求伪造漏洞 — Mailchimp List Subscribe FormCWE-352 4.3 Medium2026-02-19
CVE-2025-11706 WordPress plugin Aruba HiSpeed Cache 跨站脚本漏洞 — Aruba HiSpeed CacheCWE-79 6.1 Medium2026-02-19
CVE-2025-11725 WordPress plugin Aruba HiSpeed Cache 安全漏洞 — Aruba HiSpeed CacheCWE-862 6.5 Medium2026-02-19
CVE-2026-25242 Gogs 安全漏洞 — gogsCWE-862 9.8 -2026-02-19

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21002 条 CVE 漏洞。