目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21208

access:pre-auth 类型相关 21208 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2025-12842 WordPress plugin Booking Plugin for WordPress Appointments 输入验证错误漏洞 — Time Slot – Booking and Appointment SystemCWE-20 5.3 Medium2025-11-19
CVE-2025-12349 WordPress plugin Email Subscribers & Newsletters 访问控制错误漏洞 — Email Subscribers & Newsletters – Email Marketing, Post Notifications & Newsletter Plugin for WordPressCWE-306 5.3 Medium2025-11-19
CVE-2025-12426 WordPress plugin Quiz Maker 信息泄露漏洞 — Quiz MakerCWE-200 5.3 Medium2025-11-19
CVE-2025-12427 WordPress plugin YITH WooCommerce Wishlist 安全漏洞 — YITH WooCommerce WishlistCWE-639 5.3 Medium2025-11-19
CVE-2025-12770 WordPress plugin New User Approve 信息泄露漏洞 — New User ApproveCWE-200 5.3 Medium2025-11-19
CVE-2025-12777 WordPress plugin YITH WooCommerce Wishlist 授权问题漏洞 — YITH WooCommerce WishlistCWE-285 5.3 Medium2025-11-19
CVE-2025-63207 R.V.R Elettronica TEX 安全漏洞 — n/a 9.8AICriticalAI2025-11-19
CVE-2025-63209 ELCA Star Transmitter Remote Control 安全漏洞 — n/a 9.8AICriticalAI2025-11-19
CVE-2025-63212 GatesAir Flexiva-LX Series 安全漏洞 — n/a 9.1AICriticalAI2025-11-19
CVE-2025-63218 Axel WOLF1MS和Axel WOLF2MS 安全漏洞 — n/a 9.8AICriticalAI2025-11-19
CVE-2025-63219 Itel ISO FM SFN Adapter 安全漏洞 — n/a 9.8AICriticalAI2025-11-19
CVE-2025-63221 Axel PUMA 安全漏洞 — n/a 9.8AICriticalAI2025-11-19
CVE-2025-63223 Axel StreamerMAX MK II 安全漏洞 — n/a 9.8AICriticalAI2025-11-19
CVE-2025-63932 D-Link Router 安全漏洞 — n/a 9.8AICriticalAI2025-11-19
CVE-2025-37161 HPE Aruba Networking 100 Series Cellular Bridge 安全漏洞 — HPE Aruba Networking 100 Series Cellular Bridge 7.5 High2025-11-18
CVE-2025-46215 Fortinet FortiSandbox 安全漏洞 — FortiSandboxCWE-653 5.0 Medium2025-11-18
CVE-2025-9977 Times Software E-Payroll 安全漏洞 — E-PayrollCWE-89 7.5AIHighAI2025-11-18
CVE-2025-12545 WordPress plugin Pixel Manager for WooCommerce 信息泄露漏洞 — Pixel Manager for WooCommerce – Conversion Tracking, Google Ads, GA4, TikTok, Dynamic RemarketingCWE-200 5.3 Medium2025-11-18
CVE-2025-9312 WSO2多款产品 安全漏洞 — WSO2 API ManagerCWE-306 9.8 Critical2025-11-18
CVE-2025-11427 WordPress plugin WP Migrate Lite – WordPress Migration Made Easy 代码问题漏洞 — WP Migrate Lite – Migration Made EasyCWE-918 5.8 Medium2025-11-18
CVE-2025-41737 METZ CONNECT多款产品 访问控制错误漏洞 — Energy-Controlling EWIO2-MCWE-284 7.5 High2025-11-18
CVE-2025-41734 METZ CONNECT多款产品 安全漏洞 — Energy-Controlling EWIO2-MCWE-98 9.8 Critical2025-11-18
CVE-2025-41733 METZ CONNECT多款产品 安全漏洞 — Energy-Controlling EWIO2-MCWE-305 9.8 Critical2025-11-18
CVE-2025-12391 WordPress plugin Restrictions for BuddyPress 安全漏洞 — Restrictions for BuddyPressCWE-862 5.3 Medium2025-11-18
CVE-2025-12392 WordPress plugin Cryptocurrency Payment Gateway for WooCommerce 安全漏洞 — Cryptocurrency Payment Gateway for WooCommerceCWE-862 5.3 Medium2025-11-18
CVE-2025-12079 WordPress plugin WP Twitter Auto Publish 跨站脚本漏洞 — WP Twitter Auto PublishCWE-79 6.1 Medium2025-11-18
CVE-2025-12955 WordPress plugin Live sales notification for WooCommerce 安全漏洞 — PiWeb Live sales notification for WooCommerceCWE-862 7.5 High2025-11-18
CVE-2025-4212 WordPress plugin Checkout Files Upload for WooCommerce 跨站脚本漏洞 — Checkout Files Upload for WooCommerceCWE-79 7.2 High2025-11-18
CVE-2025-12078 WordPress plugin ArtiBot Free Chat Bot for WebSites 跨站脚本漏洞 — ArtiBot Free Chat Bot for WebSitesCWE-79 6.1 Medium2025-11-18
CVE-2025-12406 WordPress plugin Project Honey Pot Spam Trap 跨站请求伪造漏洞 — Project Honey Pot Spam TrapCWE-352 6.1 Medium2025-11-18

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21208 条 CVE 漏洞。