目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21234

access:pre-auth 类型相关 21234 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2025-10658 WordPress plugin SupportCandy 安全漏洞 — SupportCandy – Helpdesk & Customer Support Ticket SystemCWE-307 6.5 Medium2025-09-20
CVE-2025-9949 WordPress plugin Internal Links Manager 跨站请求伪造漏洞 — Internal Links ManagerCWE-352 4.3 Medium2025-09-20
CVE-2022-4980 General Bytes Crypto Application Server 安全漏洞 — Crypto Application Server (CAS)CWE-306 9.8 -2025-09-19
CVE-2025-26516 NetApp StorageGRID 安全漏洞 — StorageGRIDCWE-405 5.3 Medium2025-09-19
CVE-2025-34202 Vasion Print和Vasion Print Virtual Appliance Host 安全漏洞 — Print Virtual Appliance HostCWE-291 7.1 -2025-09-19
CVE-2025-26515 NetApp StorageGRID 安全漏洞 — StorageGRIDCWE-918 7.5 High2025-09-19
CVE-2025-36248 IBM Copy Services Manager 跨站脚本漏洞 — Copy Services ManagerCWE-79 6.1 Medium2025-09-19
CVE-2025-7665 WordPress plugin Miniorange OTP Verification with Firebase 安全漏洞 — Miniorange OTP Verification with FirebaseCWE-862 8.1 High2025-09-19
CVE-2025-5948 WordPress plugin Service Finder Bookings 安全漏洞 — Service Finder BookingsCWE-639 9.8 Critical2025-09-19
CVE-2025-5955 WordPress plugin Service Finder SMS System 安全漏洞 — Service Finder SMS SystemCWE-288 8.1 High2025-09-19
CVE-2025-10146 WordPress plugin Download Manager 跨站脚本漏洞 — Download ManagerCWE-79 6.1 Medium2025-09-19
CVE-2025-10690 WordPress plugin Goza 安全漏洞 — Goza - Nonprofit Charity WordPress ThemeCWE-862 9.8 Critical2025-09-19
CVE-2025-48703 Control Web Panel 操作系统命令注入漏洞 — CentOS Web PanelCWE-78 9.0 Critical2025-09-19
CVE-2025-57296 Tenda AC6 安全漏洞 — n/a 9.8 -2025-09-19
CVE-2025-47698 Cognex多款产品 安全漏洞 — In-Sight 2000 seriesCWE-319 6.5AIMediumAI2025-09-18
CVE-2025-54754 Cognex多款产品 安全漏洞 — In-Sight 2000 seriesCWE-259 8.0 High2025-09-18
CVE-2025-10493 WordPress plugin Chained Quiz 安全漏洞 — Chained QuizCWE-639 5.3 Medium2025-09-18
CVE-2023-49564 Nokia CloudBand Infrastructure Software和Nokia Container Service 安全漏洞 — CBIS,NCS 9.1AICriticalAI2025-09-18
CVE-2025-9083 WordPress plugin Ninja Forms 安全漏洞 — Ninja Forms 9.8AICriticalAI2025-09-18
CVE-2025-55912 ClipBucket 安全漏洞 — n/a 9.8AICriticalAI2025-09-18
CVE-2025-37122 HPE Aruba Networking ClearPass Policy Manager 安全漏洞 — HPE Aruba Networking ClearPass Policy Manager 6.1 Medium2025-09-17
CVE-2025-59345 Dragonfly 访问控制错误漏洞 — dragonflyCWE-306 9.1AICriticalAI2025-09-17
CVE-2025-35436 thorium 安全漏洞 — ThoriumCWE-248 5.3 Medium2025-09-17
CVE-2025-35434 CISA Thorium 安全漏洞 — ThoriumCWE-295 4.2 Medium2025-09-17
CVE-2025-35432 CISA Thorium 安全漏洞 — ThoriumCWE-400 5.3 Medium2025-09-17
CVE-2025-9242 WatchGuard Fireware OS 安全漏洞 — Fireware OSCWE-787 9.8AICriticalAI2025-09-17
CVE-2025-9972 N-Partner多款产品 安全漏洞 — ICG-2510WG-LTE (EU/US)CWE-78 9.8 Critical2025-09-17
CVE-2025-9971 Planet Industrial Cellular Gateway 安全漏洞 — ICG-2510WG-LTE (EU/US)CWE-306 9.8 Critical2025-09-17
CVE-2025-10042 WordPress plugin Quiz Maker SQL注入漏洞 — Quiz MakerCWE-89 5.9 Medium2025-09-17
CVE-2025-10188 WordPress plugin The Hack Repair Guys Plugin Archiver 跨站请求伪造漏洞 — The Hack Repair Guy's Plugin ArchiverCWE-352 5.4 Medium2025-09-17

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21234 条 CVE 漏洞。