目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21230

access:pre-auth 类型相关 21230 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2025-9567 Sunnet eHRD CTMS 跨站脚本漏洞 — eHRD CTMSCWE-79 6.1 Medium2025-09-01
CVE-2025-9699 SourceCodester Online Polling System Code 安全漏洞 — Online Polling System CodeCWE-89 7.3 High2025-08-30
CVE-2011-10032 Sunway ForceControl 安全漏洞 — ForceControlCWE-121 9.8 -2025-08-30
CVE-2009-20010 SourceForge Dogfood CRM 安全漏洞 — Dogfood CRMCWE-78 9.8 -2025-08-30
CVE-2009-20011 ContentKeeper Web Appliance 安全漏洞 — ContentKeeper Web ApplianceCWE-434 9.8 -2025-08-30
CVE-2025-9618 WordPress plugin Related Posts Lite 跨站请求伪造漏洞 — Related Posts LiteCWE-352 4.3 Medium2025-08-30
CVE-2025-34165 NetSupport Manager 安全漏洞 — NetSupport ManagerCWE-121 8.2 -2025-08-29
CVE-2025-34164 NetSupport Manager 安全漏洞 — NetSupport ManagerCWE-122 9.8 -2025-08-29
CVE-2024-13342 WordPress plugin Booster for WooCommerce 代码问题漏洞 — Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ ToolsCWE-434 8.1 High2025-08-29
CVE-2025-9374 WordPress plugin Ultimate Tag Warrior Importer 跨站请求伪造漏洞 — Ultimate Tag Warrior ImporterCWE-352 4.3 Medium2025-08-29
CVE-2025-9639 Ai3 QbiCRMGateway 安全漏洞 — QbiCRMGatewayCWE-23 7.5 High2025-08-29
CVE-2025-8858 Changing Clinic Image System SQL注入漏洞 — Clinic Image SystemCWE-89 7.5 High2025-08-29
CVE-2025-8857 Changing Clinic Image System 信任管理问题漏洞 — Clinic Image SystemCWE-798 9.8 Critical2025-08-29
CVE-2025-8861 Changing TSA 访问控制错误漏洞 — TSACWE-306 9.8 Critical2025-08-29
CVE-2025-39247 Hikvision HikCentral Professional 安全漏洞 — HikCentral Professional 8.6 High2025-08-29
CVE-2025-9596 itsourcecode Sports Management System 安全漏洞 — Sports Management SystemCWE-89 7.3 High2025-08-28
CVE-2025-9592 itsourcecode Apartment Management System 安全漏洞 — Apartment Management SystemCWE-89 7.3 High2025-08-28
CVE-2025-57819 FreePBX 安全漏洞 — endpointCWE-89 9.8AICriticalAI2025-08-28
CVE-2025-9376 WordPress plugin Block Bad Bots and Stop Bad Bots Crawlers and Spiders and Anti Spam Protection 安全漏洞 — Block Bad Bots and Stop Bad Bots Crawlers and Spiders and Anti Spam ProtectionCWE-863 6.5 Medium2025-08-28
CVE-2025-58081 DOS & CO SS1 安全漏洞 — SS1CWE-259 7.5 -2025-08-28
CVE-2025-58072 DOS & CO SS1 路径遍历漏洞 — SS1CWE-22 7.5 -2025-08-28
CVE-2025-54762 DOS & CO SS1 代码问题漏洞 — SS1CWE-434 9.8 -2025-08-28
CVE-2025-53970 DOS & CO SS1 代码问题漏洞 — SS1CWE-434 9.8 -2025-08-28
CVE-2025-52460 DOS & CO SS1 安全漏洞 — SS1CWE-552 7.5 -2025-08-28
CVE-2025-46409 DOS & CO SS1 加密问题漏洞 — SS1CWE-326 9.1 -2025-08-28
CVE-2025-7956 WordPress plugin Ajax Search Lite 安全漏洞 — Ajax Search Lite – Live Search & FilterCWE-862 5.3 Medium2025-08-28
CVE-2024-13807 WordPress plugin Xagio SEO 信息泄露漏洞 — Xagio SEO – AI Powered SEOCWE-200 7.5 High2025-08-28
CVE-2025-7955 WordPress plugin RingCentral Communications 授权问题漏洞 — RingCentral Communications Plugin – FREECWE-287 9.8 Critical2025-08-28
CVE-2024-9648 WordPress plugin WP ULike Pro 代码问题漏洞 — WP ULike ProCWE-434 6.1 Medium2025-08-28
CVE-2025-7812 WordPress plugin Video Share VOD 跨站请求伪造漏洞 — Video Share VOD – Turnkey Video Site Builder ScriptCWE-352 8.8 High2025-08-28

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21230 条 CVE 漏洞。