目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21230

access:pre-auth 类型相关 21230 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2025-10302 WordPress plugin The Ultimate Viral Quiz 跨站请求伪造漏洞 — Ultimate Viral QuizCWE-352 4.3 Medium2025-10-03
CVE-2025-9897 WordPress plugin AP Background 跨站请求伪造漏洞 — AP BackgroundCWE-352 4.3 Medium2025-10-03
CVE-2025-9895 WordPress plugin Notification Bar 跨站请求伪造漏洞 — Notification BarCWE-352 4.3 Medium2025-10-03
CVE-2025-9630 WordPress plugin WP SinoType 跨站请求伪造漏洞 — WP SinoTypeCWE-352 4.3 Medium2025-10-03
CVE-2025-8669 WordPress plugin Customify 跨站请求伪造漏洞 — CustomifyCWE-352 4.3 Medium2025-10-03
CVE-2025-9889 WordPress plugin ContentMX Content Publisher 跨站请求伪造漏洞 — ContentMX Content PublisherCWE-352 4.3 Medium2025-10-03
CVE-2025-9200 WordPress plugin Blappsta Mobile App SQL注入漏洞 — Blappsta Mobile App Plugin – Your native, mobile iPhone App and Android AppCWE-89 7.5 High2025-10-03
CVE-2025-9892 WordPress plugin Restrict User Registration 跨站请求伪造漏洞 — Restrict User RegistrationCWE-352 5.3 Medium2025-10-03
CVE-2025-10309 WordPress plugin PayPal Forms 跨站请求伪造漏洞 — PayPal FormsCWE-352 4.3 Medium2025-10-03
CVE-2025-9945 WordPress plugin Optimize More! – CSS 跨站请求伪造漏洞 — Optimize More! – CSSCWE-352 4.3 Medium2025-10-03
CVE-2025-9884 WordPress plugin Mobile Site Redirect 跨站请求伪造漏洞 — Mobile Site RedirectCWE-352 6.1 Medium2025-10-03
CVE-2025-7721 WordPress plugin JoomSport 安全漏洞 — JoomSport – for Sports: Team & League, Football, Hockey & moreCWE-98 9.8 Critical2025-10-03
CVE-2025-9209 WordPress plugin RestroPress 信息泄露漏洞 — RestroPress – Online Food Ordering SystemCWE-200 9.8 Critical2025-10-03
CVE-2025-9286 WordPress plugin Appy Pie Connect for WooCommerce 安全漏洞 — Appy Pie Connect for WooCommerceCWE-620 9.8 Critical2025-10-03
CVE-2025-9885 WordPress plugin MPWizard 跨站请求伪造漏洞 — MPWizard – Create Mercado Pago Payment LinksCWE-352 4.3 Medium2025-10-03
CVE-2025-10726 WordPress plugin WPRecovery SQL注入漏洞 — WPRecoveryCWE-89 9.1 Critical2025-10-03
CVE-2025-10311 WordPress plugin Comment Info Detector 跨站请求伪造漏洞 — Comment Info DetectorCWE-352 4.3 Medium2025-10-03
CVE-2025-10212 WordPress plugin SiteAlert 安全漏洞 — SiteAlert (Formerly WP Health)CWE-862 5.3 Medium2025-10-03
CVE-2025-9213 WordPress plugin TextBuilder 跨站请求伪造漏洞 — TextBuilderCWE-352 8.8 High2025-10-03
CVE-2025-6388 WordPress plugin Spirit Framework 安全漏洞 — Spirit FrameworkCWE-288 9.8 Critical2025-10-03
CVE-2025-55971 TCL 65C655 Smart TV 安全漏洞 — n/a 9.8AICriticalAI2025-10-03
CVE-2025-55972 TCL 65C655 Smart TV 安全漏洞 — n/a 7.5AIHighAI2025-10-03
CVE-2025-57423 MyClub 安全漏洞 — n/a 9.1AICriticalAI2025-10-03
CVE-2025-61666 Traccar 安全漏洞 — traccarCWE-22 9.1AICriticalAI2025-10-02
CVE-2025-61665 WeGIA 安全漏洞 — WeGIACWE-287 7.5 -2025-10-02
CVE-2025-10653 Raisecom MSG1200 安全漏洞 — Pro2 SeriesCWE-288 8.6 High2025-10-02
CVE-2025-11240 KNIME Business Hub 安全漏洞 — KNIME Business HubCWE-601 6.1 -2025-10-02
CVE-2025-40645 ViDay 信息泄露漏洞 — ViDayCWE-200 7.5AIHighAI2025-10-02
CVE-2025-54291 LXD 安全漏洞 — LXDCWE-209 5.3AIMediumAI2025-10-02
CVE-2025-54290 LXD 安全漏洞 — LXDCWE-200 5.3AIMediumAI2025-10-02

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21230 条 CVE 漏洞。