目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21151

access:pre-auth 类型相关 21151 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2020-36877 ReQuest Serious Play F3 Media Server 操作系统命令注入漏洞 — ReQuest Serious Play ProCWE-78 9.8 -2025-12-05
CVE-2020-36876 ReQuest Serious Play F3 Media Server 日志信息泄露漏洞 — ReQuest Serious Play ProCWE-532 7.5 -2025-12-05
CVE-2025-14092 Edimax BR-6478AC 操作系统命令注入漏洞 — BR-6478AC V3CWE-78 4.7 Medium2025-12-05
CVE-2025-14090 AMTT Hotel Broadband Operation System SQL注入漏洞 — Hotel Broadband Operation SystemCWE-89 4.7 Medium2025-12-05
CVE-2025-13620 WordPress plugin Wp Social Login and Register Social Counter 安全漏洞 — Wp Social Login and Register Social CounterCWE-862 5.3 Medium2025-12-05
CVE-2025-12876 WordPress plugin Projectopia 安全漏洞 — Projectopia – Project Management ToolCWE-862 5.3 Medium2025-12-05
CVE-2025-12879 WordPress plugin User Generator and Importer 跨站请求伪造漏洞 — User Generator and ImporterCWE-352 8.8 High2025-12-05
CVE-2025-12851 WordPress plugin My auctions allegro 安全漏洞 — My auctions allegroCWE-98 8.1 High2025-12-05
CVE-2025-12130 WordPress plugin WC Vendors 跨站请求伪造漏洞 — WC Vendors – WooCommerce Multivendor, WooCommerce Marketplace, Product VendorsCWE-352 4.3 Medium2025-12-05
CVE-2025-13684 WordPress plugin ARK Related Posts 跨站请求伪造漏洞 — ARK Related PostsCWE-352 4.3 Medium2025-12-05
CVE-2025-12850 WordPress plugin My auctions allegro SQL注入漏洞 — My auctions allegroCWE-89 7.5 High2025-12-05
CVE-2025-12093 WordPress plugin Voidek Employee Portal 安全漏洞 — Voidek Employee PortalCWE-862 5.3 Medium2025-12-05
CVE-2025-12355 WordPress plugin Payaza 安全漏洞 — PayazaCWE-862 5.3 Medium2025-12-05
CVE-2025-13515 WordPress plugin Nouri.sh Newsletter 跨站脚本漏洞 — Nouri.sh NewsletterCWE-79 6.1 Medium2025-12-05
CVE-2025-12374 WordPress plugin User Verification 授权问题漏洞 — User Verification by PickPluginsCWE-287 9.8 Critical2025-12-05
CVE-2025-12373 WordPress plugin Torod – The smart shipping and delivery portal for e-shops and retailers 跨站请求伪造漏洞 — Torod – The smart shipping and delivery portal for e-shops and retailersCWE-352 4.3 Medium2025-12-05
CVE-2025-13528 WordPress plugin Feedback Modal for Website 安全漏洞 — Feedback Modal for WebsiteCWE-862 5.3 Medium2025-12-05
CVE-2025-12190 WordPress plugin Image Optimizer by wps.sk 跨站请求伪造漏洞 — Image Optimizer by wps.skCWE-352 4.3 Medium2025-12-05
CVE-2025-12128 WordPress plugin Hide Categories Or Products On Shop Page 跨站请求伪造漏洞 — Hide Categories Or Products On Shop PageCWE-352 4.3 Medium2025-12-05
CVE-2025-12189 WordPress plugin Bread & Butter 安全漏洞 — Bread & Butter: AI-Powered Lead IntelligenceCWE-352 4.3 Medium2025-12-05
CVE-2025-13622 WordPress plugin Jabbernotification 跨站脚本漏洞 — JabbernotificationCWE-79 6.1 Medium2025-12-05
CVE-2025-13623 WordPress plugin Twitscription 跨站脚本漏洞 — TwitscriptionCWE-79 6.1 Medium2025-12-05
CVE-2025-10055 WordPress plugin Time Sheets 跨站请求伪造漏洞 — Time SheetsCWE-352 4.3 Medium2025-12-05
CVE-2025-13360 WordPress plugin Quantic Social Image Hover 跨站请求伪造漏洞 — Quantic Social Image HoverCWE-352 4.3 Medium2025-12-05
CVE-2025-13625 WordPress plugin WP-SOS-Donate Donation Sidebar 跨站脚本漏洞 — WP-SOS-Donate Donation Sidebar PluginCWE-79 6.1 Medium2025-12-05
CVE-2025-13621 WordPress plugin dream gallery 跨站请求伪造漏洞 — dream galleryCWE-352 6.1 Medium2025-12-05
CVE-2025-13512 WordPress plugin CoSign Single Signon 跨站脚本漏洞 — CoSign Single SignonCWE-79 6.1 Medium2025-12-05
CVE-2025-13144 WordPress plugin ContentStudio 跨站请求伪造漏洞 — ContentStudioCWE-352 4.3 Medium2025-12-05
CVE-2025-13006 WordPress plugin SurveyFunnel – Survey Plugin for WordPress 信息泄露漏洞 — SurveyFunnel – Survey Plugin for WordPressCWE-200 5.3 Medium2025-12-05
CVE-2025-13312 WordPress plugin CRM Memberships 安全漏洞 — CRM MembershipsCWE-862 5.3 Medium2025-12-05

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21151 条 CVE 漏洞。