目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21002

access:pre-auth 类型相关 21002 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2025-12074 WordPress plugin Context Blog 信息泄露漏洞 — Context BlogCWE-200 5.3 Medium2026-02-18
CVE-2025-70141 SourceCodester Customer Support System 安全漏洞 — n/a 9.8AICriticalAI2026-02-18
CVE-2025-70148 CodeAstro Membership Management System 安全漏洞 — n/a 7.5 High2026-02-18
CVE-2025-70150 CodeAstro Membership Management System 安全漏洞 — n/a 9.8 Critical2026-02-18
CVE-2026-1670 Honeywell多款产品 访问控制错误漏洞 — I-HIB2PI-UL 2MP IPCWE-306 9.8 Critical2026-02-17
CVE-2025-33135 IBM Financial Transaction Manager for ACH Services and Check Services for Multi-Platform 跨站脚本漏洞 — Financial Transaction Manager for ACH Services and Check Services for Multi-PlatformCWE-79 6.1 Medium2026-02-17
CVE-2026-23598 HPE Aruba Networking 5G Core server API 安全漏洞 — HPE Aruba Networking Private 5G Core 6.5 Medium2026-02-17
CVE-2026-23597 HPE Aruba Networking 5G Core server API 安全漏洞 — HPE Aruba Networking Private 5G Core 6.5 Medium2026-02-17
CVE-2026-23596 HPE Aruba Networking Private 5G Core 安全漏洞 — HPE Aruba Networking Private 5G Core 6.5 Medium2026-02-17
CVE-2026-22769 Dell RecoverPoint for Virtual Machines 信任管理问题漏洞 — RecoverPoint for Virtual MachinesCWE-798 10.0 Critical2026-02-17
CVE-2023-38265 IBM Cloud Pak System 安全漏洞 — Cloud Pak SystemCWE-548 5.3 Medium2026-02-17
CVE-2025-36019 IBM Concert 跨站脚本漏洞 — ConcertCWE-79 6.1 Medium2026-02-17
CVE-2026-1216 WordPress plugin RSS Aggregator 跨站脚本漏洞 — RSS Aggregator – RSS Import, News Feeds, Feed to Post, and AutobloggingCWE-79 7.2 High2026-02-17
CVE-2026-0829 WordPress plugin Frontend File Manager Plugin 安全漏洞 — Frontend File Manager Plugin 6.5AIMediumAI2026-02-17
CVE-2026-1657 WordPress plugin EventPrime 安全漏洞 — EventPrime – Events Calendar, Bookings and TicketsCWE-862 5.3 Medium2026-02-17
CVE-2026-2592 WordPress plugin Zarinpal Gateway for WooCommerce 访问控制错误漏洞 — Zarinpal GatewayCWE-284 7.7 High2026-02-17
CVE-2026-26220 LightLLM 代码问题漏洞 — LightLLMCWE-502 9.8AICriticalAI2026-02-17
CVE-2019-25393 Smoothwall Express 跨站脚本漏洞 — Smoothwall ExpressCWE-79 6.1 Medium2026-02-16
CVE-2019-25392 Smoothwall Express 跨站脚本漏洞 — Smoothwall ExpressCWE-79 6.1 Medium2026-02-16
CVE-2019-25389 Smoothwall Express 跨站脚本漏洞 — Smoothwall ExpressCWE-79 6.1 Medium2026-02-16
CVE-2019-25388 Smoothwall Express 跨站脚本漏洞 — Smoothwall ExpressCWE-79 6.1 Medium2026-02-16
CVE-2019-25387 Smoothwall Express 跨站脚本漏洞 — Smoothwall ExpressCWE-79 6.1 Medium2026-02-16
CVE-2019-25382 Smoothwall Express 安全漏洞 — Smoothwall ExpressCWE-79 6.1 Medium2026-02-16
CVE-2026-2577 nanobot 安全漏洞 — nanobotCWE-306 10.0 Critical2026-02-16
CVE-2026-2537 Comfast CF-E4 命令注入漏洞 — CF-E4CWE-77 4.7 Medium2026-02-16
CVE-2026-2533 TOSEI Self-service Washing Machine 命令注入漏洞 — Self-service Washing MachineCWE-77 7.3 High2026-02-16
CVE-2026-26366 eNet SMART HOME server 安全漏洞 — eNet SMART HOME serverCWE-1392 9.8 Critical2026-02-15
CVE-2019-25375 Deciso OPNsense 跨站脚本漏洞 — OPNsenseCWE-79 6.1 Medium2026-02-15
CVE-2019-25376 Deciso OPNsense 跨站脚本漏洞 — OPNsenseCWE-79 6.1 Medium2026-02-15
CVE-2019-25371 Deciso OPNsense 跨站脚本漏洞 — OPNsenseCWE-79 6.1 Medium2026-02-15

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21002 条 CVE 漏洞。