目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21292

access:pre-auth 类型相关 21292 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2025-6975 WordPress plugin Events Manager 跨站脚本漏洞 — Events Manager – Calendar, Bookings, Tickets, and more!CWE-79 6.1 Medium2025-07-09
CVE-2025-3499 Radiflow iSAP Smart Collector 安全漏洞 — iSAP Smart CollectorCWE-78 10.0 Critical2025-07-09
CVE-2025-3498 Radiflow iSAP Smart Collector 安全漏洞 — iSAP Smart CollectorCWE-306 9.9 Critical2025-07-09
CVE-2025-6691 WordPress plugin SureForms 安全漏洞 — SureForms – Drag and Drop Form Builder for WordPressCWE-73 8.1 High2025-07-09
CVE-2025-6742 WordPress plugin SureForms 代码问题漏洞 — SureForms – Drag and Drop Form Builder for WordPressCWE-502 7.5 High2025-07-09
CVE-2025-4606 WordPress plugin Sala 安全漏洞 — Sala - Startup & SaaS WordPress ThemeCWE-620 9.8 Critical2025-07-09
CVE-2025-34077 WordPress plugin Pie Register 安全漏洞 — WordPress Pie Register PluginCWE-434 9.8AICriticalAI2025-07-09
CVE-2025-44177 White Star Software Protop 安全漏洞 — n/a 7.5AIHighAI2025-07-09
CVE-2025-52364 Tenda CP3 Pro 安全漏洞 — n/a 9.1AICriticalAI2025-07-09
CVE-2025-53645 Zimbra Collaboration Suite 安全漏洞 — n/a 7.5AIHighAI2025-07-09
CVE-2025-4855 WordPress plugin Support Board 安全漏洞 — Support BoardCWE-639 9.8 Critical2025-07-08
CVE-2025-3780 WordPress plugin WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible 安全漏洞 — WCFM – Frontend Manager for WooCommerceCWE-862 6.5 Medium2025-07-08
CVE-2025-4828 WordPress plugin Support Board 路径遍历漏洞 — Support BoardCWE-22 9.8 Critical2025-07-08
CVE-2025-49542 Adobe ColdFusion 跨站脚本漏洞 — ColdFusionCWE-79 5.2 Medium2025-07-08
CVE-2025-3648 ServiceNow Now Platform 安全漏洞 — Now PlatformCWE-1220 5.3AIMediumAI2025-07-08
CVE-2024-55599 Fortinet FortiOS和Fortinet FortiProxy 安全特征问题漏洞 — FortiOSCWE-358 4.9 Medium2025-07-08
CVE-2025-40736 Siemens SINEC NMS 访问控制错误漏洞 — SINEC NMSCWE-306 9.8 Critical2025-07-08
CVE-2025-40735 Siemens SINEC NMS SQL注入漏洞 — SINEC NMSCWE-89 8.8 High2025-07-08
CVE-2025-6744 WordPress plugin Woodmart 代码注入漏洞 — WoodmartCWE-94 7.3 High2025-07-08
CVE-2025-7346 pyLoad 安全漏洞 — PyloadCWE-281 6.2AIMediumAI2025-07-08
CVE-2025-25271 PHOENIX CONTACT CHARX SEC 安全漏洞 — CHARX SEC-3150CWE-1188 8.8 High2025-07-08
CVE-2025-25270 PHOENIX CONTACT多款产品 安全漏洞 — CHARX SEC-3150CWE-913 9.8 Critical2025-07-08
CVE-2025-25269 PHOENIX CONTACT多款产品 操作系统命令注入漏洞 — CHARX SEC-3150CWE-78 8.4 High2025-07-08
CVE-2025-25268 PHOENIX CONTACT CHARX SEC-3xxx 访问控制错误漏洞 — CHARX SEC-3150CWE-306 8.8 High2025-07-08
CVE-2025-24003 PHOENIX CONTACT CHARX SEC-3xxx 安全漏洞 — CHARX SEC-3150CWE-120 8.2 High2025-07-08
CVE-2025-24002 Phoenix Contact CHARX SEC 输入验证错误漏洞 — CHARX SEC-3150CWE-20 5.3 Medium2025-07-08
CVE-2025-42956 SAP NetWeaver Application Server ABAP and ABAP Platform 跨站脚本漏洞 — SAP NetWeaver Application Server ABAPCWE-79 6.1 Medium2025-07-08
CVE-2025-5957 WordPress plugin Guest Support 安全漏洞 — Guest SupportCWE-862 5.3 Medium2025-07-08
CVE-2025-7146 Jhenggao iPublish System 安全漏洞 — iPublish SystemCWE-23 7.5 High2025-07-08
CVE-2025-42981 SAP NetWeaver Application Server ABAP 输入验证错误漏洞 — SAP NetWeaver Application Server ABAPCWE-601 6.1 Medium2025-07-08

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21292 条 CVE 漏洞。