目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21230

access:pre-auth 类型相关 21230 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2025-9816 WordPress plugin WP Statistics 跨站脚本漏洞 — WP Statistics – Simple, privacy-friendly Google Analytics alternativeCWE-79 7.2 High2025-09-27
CVE-2025-10498 WordPress plugin Ninja Forms 跨站请求伪造漏洞 — Ninja Forms – The Contact Form Builder That Grows With YouCWE-352 4.3 Medium2025-09-27
CVE-2025-10499 WordPress plugin Ninja Forms 跨站请求伪造漏洞 — Ninja Forms – The Contact Form Builder That Grows With YouCWE-352 4.3 Medium2025-09-27
CVE-2025-36239 IBM Storage TS4500 Library 跨站脚本漏洞 — Storage TS4500 LibraryCWE-79 6.1 Medium2025-09-27
CVE-2025-36274 IBM Aspera HTTP Gateway 安全漏洞 — Aspera HTTP GatewayCWE-319 7.5 High2025-09-26
CVE-2025-10858 GitLab 安全漏洞 — GitLabCWE-770 7.5 High2025-09-26
CVE-2025-10137 WordPress plugin Snow Monkey 代码问题漏洞 — Snow MonkeyCWE-918 5.4 Medium2025-09-26
CVE-2025-9984 WordPress plugin Featured Image from URL 安全漏洞 — Featured Image from URL (FIFU)CWE-862 5.3 Medium2025-09-26
CVE-2025-9985 WordPress plugin Featured Image from URL 日志信息泄露漏洞 — Featured Image from URL (FIFU)CWE-532 5.3 Medium2025-09-26
CVE-2025-10377 WordPress plugin System Dashboard 跨站请求伪造漏洞 — System DashboardCWE-352 4.3 Medium2025-09-26
CVE-2025-10745 WordPress plugin Banhammer 安全特征问题漏洞 — Banhammer – Monitor Site Traffic, Block Bad Users and BotsCWE-330 5.3 Medium2025-09-26
CVE-2025-10752 WordPress plugin OAuth Single Sign On – SSO (OAuth Client) 跨站请求伪造漏洞 — OAuth Single Sign On – SSO (OAuth Client)CWE-352 4.3 Medium2025-09-26
CVE-2025-10880 Dingtian DT-R002 安全漏洞 — DT-R002CWE-522 7.5AIHighAI2025-09-25
CVE-2025-10879 Dingtian DT-R002 安全漏洞 — DT-R002CWE-522 5.3AIMediumAI2025-09-25
CVE-2025-20363 Cisco多款产品 安全漏洞 — IOSCWE-122 9.0 Critical2025-09-25
CVE-2025-20362 Cisco Secure Firewall Adaptive Security Appliance和Cisco Secure Firewall Threat Defense 安全漏洞 — Cisco Secure Firewall Adaptive Security Appliance (ASA) SoftwareCWE-862 6.5 Medium2025-09-25
CVE-2024-48014 Dell BSAFE Micro Edition Suite 缓冲区错误漏洞 — BSAFE Micro Edition SuiteCWE-787 7.5 High2025-09-25
CVE-2025-36601 Dell PowerScale OneFS 信息泄露漏洞 — PowerScale OneFSCWE-200 4.0 Medium2025-09-25
CVE-2020-36851 cors-anywhere 安全漏洞 — Rob--W / cors-anywhereCWE-942 9.1AICriticalAI2025-09-25
CVE-2025-10540 iMonitor EAM 安全漏洞 — iMonitor EAMCWE-319 9.8AICriticalAI2025-09-25
CVE-2025-20314 Cisco IOS XE 安全漏洞 — Cisco IOS XE SoftwareCWE-232 6.7 Medium2025-09-24
CVE-2025-48867 Horilla 跨站脚本漏洞 — horillaCWE-79 4.8 Medium2025-09-24
CVE-2025-48869 Horilla 访问控制错误漏洞 — horillaCWE-284 7.5 High2025-09-24
CVE-2025-20316 Cisco IOS XE 访问控制错误漏洞 — Cisco IOS XE SoftwareCWE-284 5.3 Medium2025-09-24
CVE-2025-20293 Cisco IOS XE Software 安全漏洞 — Cisco IOS XE SoftwareCWE-459 5.3 Medium2025-09-24
CVE-2025-20240 Cisco IOS XE Software 安全漏洞 — Cisco IOS XE SoftwareCWE-692 6.1 Medium2025-09-24
CVE-2025-20313 Cisco IOS XE 安全漏洞 — Cisco IOS XE SoftwareCWE-35 6.7 Medium2025-09-24
CVE-2025-20311 Cisco IOS XE Software 代码问题漏洞 — Cisco IOS XE SoftwareCWE-19 7.4 High2025-09-24
CVE-2025-20160 Cisco IOS和Cisco IOS XE Software 授权问题漏洞 — IOSCWE-287 8.1 High2025-09-24
CVE-2025-20315 Cisco IOS XE 安全漏洞 — Cisco IOS XE SoftwareCWE-805 8.6 High2025-09-24

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21230 条 CVE 漏洞。