目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21234

access:pre-auth 类型相关 21234 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2025-50578 Heimdall 安全漏洞 — n/a 6.1AIMediumAI2025-07-30
CVE-2025-54381 BentoML 代码问题漏洞 — BentoMLCWE-918 9.9 Critical2025-07-29
CVE-2025-40600 SonicWALL SonicOS SSLVPN 格式化字符串错误漏洞 — SonicOSCWE-134 7.5AIHighAI2025-07-29
CVE-2025-36010 IBM Db2 for Linux 安全漏洞 — Db2CWE-833 6.5 Medium2025-07-29
CVE-2025-53077 SAMSUNG DMS 安全漏洞 — DMS(Data Management Server)CWE-698 6.5 Medium2025-07-29
CVE-2025-4370 WordPress plugin Brizy 安全漏洞 — Brizy – Page BuilderCWE-862 5.3 Medium2025-07-29
CVE-2025-6495 WordPress plugin Bricks SQL注入漏洞 — BricksCWE-89 7.5 High2025-07-29
CVE-2025-44136 TileServer PHP 安全漏洞 — n/a 6.1AIMediumAI2025-07-29
CVE-2025-52284 TOTOLINK X6000R 安全漏洞 — n/a 9.8AICriticalAI2025-07-29
CVE-2025-54423 Copyparty 跨站脚本漏洞 — copypartyCWE-79 5.4 Medium2025-07-28
CVE-2025-24485 MedDream PACS Premium 代码问题漏洞 — MedDream PACS PremiumCWE-918 5.8 Medium2025-07-28
CVE-2025-8253 Code-Projects Exam Form Submission 注入漏洞 — Exam Form SubmissionCWE-89 7.3 High2025-07-28
CVE-2025-8104 WordPress plugin Memory Usage 跨站请求伪造漏洞 — Memory Usage, Memory Limit, PHP and Server Memory Health Check and Provide SuggestionsCWE-352 4.3 Medium2025-07-27
CVE-2025-8097 WordPress plugin WoodMart 输入验证错误漏洞 — WoodmartCWE-20 5.3 Medium2025-07-26
CVE-2025-8198 WordPress plugin MinimogWP 安全漏洞 — MinimogWP – The High Converting eCommerce WordPress ThemeCWE-472 7.5 High2025-07-26
CVE-2025-6895 WordPress plugin Melapress Login Security 安全漏洞 — Melapress Login SecurityCWE-288 9.8 Critical2025-07-26
CVE-2025-8103 WordPress plugin WPeMatico RSS Feed Fetcher 跨站请求伪造漏洞 — WPeMatico RSS Feed FetcherCWE-352 4.3 Medium2025-07-26
CVE-2024-13507 GeoDirectory – WP Business Directory Plugin and Classified Listings Directory SQL注入漏洞 — GeoDirectory – WP Business Directory Plugin and Classified Listings DirectoryCWE-89 7.5 High2025-07-26
CVE-2025-3508 HP DesignJet 安全漏洞 — Certain HP DesignJet productsCWE-200 5.3 -2025-07-25
CVE-2025-34139 Sitecore多款产品 安全漏洞 — Experience Manager (XM)CWE-522 7.5 -2025-07-25
CVE-2014-125115 Pandora FMS 安全漏洞 — Pandora FMSCWE-798 9.8 -2025-07-25
CVE-2014-125116 Hybridauth 安全漏洞 — HybridAuthCWE-434 9.8 -2025-07-25
CVE-2014-125117 D-Link DSP-W215 安全漏洞 — DSP-W215CWE-121 9.8 -2025-07-25
CVE-2025-34136 Commvault 安全漏洞 — CommvaultCWE-89 9.8 -2025-07-25
CVE-2023-7306 WordPress plugin Frontend File Manager Plugin 安全漏洞 — Frontend File Manager PluginCWE-862 7.5 High2025-07-25
CVE-2019-25224 WordPress plugin WP Database Backup 操作系统命令注入漏洞 — WP Database Backup – Unlimited Database & Files Backup by Backup for WPCWE-78 9.8 Critical2025-07-25
CVE-2015-10143 WordPress plugin Platform 安全漏洞 — PlatformCWE-862 9.8 Critical2025-07-25
CVE-2025-30135 IROAD Dashcam FX2 安全漏洞 — n/a 7.5 -2025-07-25
CVE-2025-51411 Institute-of-Current-Students 安全漏洞 — n/a 6.1 -2025-07-25
CVE-2025-54379 LF Edge eKuiper SQL注入漏洞 — ekuiperCWE-89 9.8 -2025-07-24

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21234 条 CVE 漏洞。