目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21030

access:pre-auth 类型相关 21030 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2025-14436 WordPress plugin Brevo for WooCommerce 跨站脚本漏洞 — Brevo for WooCommerceCWE-79 7.2 High2026-01-08
CVE-2026-22234 OPEXUS eCasePortal 安全漏洞 — eCase PortalCWE-639 9.8 Critical2026-01-08
CVE-2025-68151 CoreDNS 安全漏洞 — corednsCWE-770 7.5 -2026-01-08
CVE-2026-22032 Directus 输入验证错误漏洞 — directusCWE-601 4.3 Medium2026-01-08
CVE-2026-21892 parsl 安全漏洞 — parslCWE-89 5.3 Medium2026-01-08
CVE-2025-69258 Trend Micro Apex Central 安全漏洞 — Trend Micro Apex CentralCWE-290 9.8 Critical2026-01-08
CVE-2026-21894 n8n 安全漏洞 — n8nCWE-290 6.5 Medium2026-01-08
CVE-2026-21874 NiceGUI 安全漏洞 — niceguiCWE-772 5.3 Medium2026-01-08
CVE-2019-25296 WordPress plugin WP Cost Estimation 安全漏洞 — WP Cost Estimation & Payment Forms BuilderCWE-434 9.8 Critical2026-01-08
CVE-2025-65518 Plesk Obsidian 安全漏洞 — n/a 7.5 -2026-01-08
CVE-2025-67090 GL.iNet AX1800 安全漏洞 — n/a 8.0 -2026-01-08
CVE-2025-67325 QloApps 安全漏洞 — n/a 9.8 -2026-01-08
CVE-2025-68715 Panda Wireless PWRU0 安全漏洞 — n/a 9.8 -2026-01-08
CVE-2025-68717 KAYSUS KS-WR3600 安全漏洞 — n/a 9.8 -2026-01-08
CVE-2026-21858 n8n 输入验证错误漏洞 — n8nCWE-20 10.0 Critical2026-01-07
CVE-2019-25290 Inim SmartLiving SmartLAN/SI和Inim SmartLiving SmartLAN/G 代码问题漏洞 — Smartliving SmartLAN/G/SICWE-918 5.3 Medium2026-01-07
CVE-2017-20216 FLIR Thermal Camera 操作系统命令注入漏洞 — FLIR Thermal Camera PT-SeriesCWE-78 9.8 Critical2026-01-07
CVE-2017-20212 FLIR Thermal Camera 路径遍历漏洞 — FLIR Thermal Camera F/FC/PT/DCWE-22 6.2 Medium2026-01-07
CVE-2017-20213 FLIR Thermal Camera 访问控制错误漏洞 — FLIR Thermal Camera F/FC/PT/D StreamCWE-306 7.5 High2026-01-07
CVE-2026-21854 Tarkov Data Manager 安全漏洞 — tarkov-data-managerCWE-287 9.8 Critical2026-01-07
CVE-2026-22539 Efacec QC 安全漏洞 — QC 60/90/120CWE-201 5.3 -2026-01-07
CVE-2026-20026 Cisco UTD SNORT IPS Engine Software和Cisco Secure Firewall Threat Defense Software 资源管理错误漏洞 — Cisco Secure Firewall Threat Defense (FTD) SoftwareCWE-415 5.8 Medium2026-01-07
CVE-2026-20027 Cisco Secure Firewall Threat Defense和Cisco UTD SNORT IPS Engine Software 信息泄露漏洞 — Cisco Secure Firewall Threat Defense (FTD) SoftwareCWE-200 5.3 Medium2026-01-07
CVE-2025-14077 WordPress plugin Simcast 跨站请求伪造漏洞 — SimcastCWE-352 4.3 Medium2026-01-07
CVE-2025-14460 WordPress plugin Piraeus Bank WooCommerce Payment Gateway 安全漏洞 — Piraeus Bank WooCommerce Payment GatewayCWE-862 5.3 Medium2026-01-07
CVE-2025-13801 WordPress plugin Yoco Payments 路径遍历漏洞 — Yoco PaymentsCWE-22 7.5 High2026-01-07
CVE-2025-13990 WordPress plugin Mamurjor Employee Info 跨站请求伪造漏洞 — Mamurjor Employee InfoCWE-352 4.3 Medium2026-01-07
CVE-2025-13419 WordPress plugin Guest posting / Frontend Posting / Front Editor – WP Front User Submit 安全漏洞 — Guest posting / Frontend Posting / Front Editor – WP Front User SubmitCWE-862 5.3 Medium2026-01-07
CVE-2025-14465 WordPress plugin Sticky Action Buttons 跨站请求伪造漏洞 — Sticky Action ButtonsCWE-352 4.3 Medium2026-01-07
CVE-2025-14131 WordPress plugin WP Widget Changer 跨站脚本漏洞 — WP Widget ChangerCWE-79 6.1 Medium2026-01-07

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21030 条 CVE 漏洞。