access:pre-auth 类型相关 21311 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。
“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2024-6809 | WordPress plugin Simple Video Directory 安全漏洞 — Simple Video Directory | 9.8AI | CriticalAI | 2025-05-15 |
| CVE-2024-6159 | WordPress plugin Push Notification for Post and BuddyPress 安全漏洞 — Push Notification for Post and BuddyPress | 9.8AI | CriticalAI | 2025-05-15 |
| CVE-2024-13823 | WordPress plugin 360 Product Rotation 安全漏洞 — 360 Product Rotation | 6.1AI | MediumAI | 2025-05-15 |
| CVE-2024-13865 | WordPress plugin S3Player 安全漏洞 — S3Player | 6.1AI | MediumAI | 2025-05-15 |
| CVE-2024-13727 | WordPress plugin MemberSpace 安全漏洞 — MemberSpace | 6.1AI | MediumAI | 2025-05-15 |
| CVE-2024-10504 | WordPress plugin Contact Form, Survey, Quiz & Popup Form Builder 安全漏洞 — Contact Form, Survey, Quiz & Popup Form Builder | 6.1AI | MediumAI | 2025-05-15 |
| CVE-2024-10098 | WordPress plugin ApplyOnline 安全漏洞 — ApplyOnline | 7.5AI | HighAI | 2025-05-15 |
| CVE-2024-10075 | WordPress plugin Jetpack 安全漏洞 — Jetpack | 5.3AI | MediumAI | 2025-05-15 |
| CVE-2025-30476 | Dell PowerScale InsightIQ 资源管理错误漏洞 — PowerScale InsightIQCWE-400 | 5.3 | Medium | 2025-05-15 |
| CVE-2025-30475 | Dell PowerScale InsightIQ 安全漏洞 — PowerScale InsightIQCWE-269 | 8.1 | High | 2025-05-15 |
| CVE-2025-4762 | eSigna 安全漏洞 — eSignaCWE-20 | 7.5AI | HighAI | 2025-05-15 |
| CVE-2025-4564 | WordPress plugin TicketBAI Facturas para WooCommerce 路径遍历漏洞 — TicketBAI Facturas para WooCommerceCWE-22 | 9.8 | Critical | 2025-05-15 |
| CVE-2025-32738 | I-O Data HDL-T 访问控制错误漏洞 — HDL-TC1CWE-306 | 5.3 | Medium | 2025-05-15 |
| CVE-2025-32002 | I-O Data HDL-T 操作系统命令注入漏洞 — HDL-TC1CWE-78 | 9.8 | Critical | 2025-05-15 |
| CVE-2025-3917 | WordPress plugin baiduseo 代码问题漏洞 — SEO合集(支持百度/Google/Bing/头条推送)CWE-434 | 9.8 | Critical | 2025-05-15 |
| CVE-2025-4579 | WordPress plugin WP Content Security Plugin 跨站脚本漏洞 — WP Content Security PluginCWE-79 | 7.2 | High | 2025-05-15 |
| CVE-2025-47889 | Jenkins plugin WSO2 Oauth 安全漏洞 — Jenkins WSO2 Oauth Plugin | 9.8AI | CriticalAI | 2025-05-14 |
| CVE-2025-0132 | Palo Alto Networks Cortex XDR Broker VM 安全漏洞 — Cortex XDR Broker VMCWE-306 | 5.3AI | MediumAI | 2025-05-14 |
| CVE-2025-0130 | Palo Alto Networks PAN-OS 安全漏洞 — Cloud NGFWCWE-754 | 7.5AI | HighAI | 2025-05-14 |
| CVE-2025-40595 | SonicWALL SMA1000 安全漏洞 — SMA1000CWE-918 | 9.1AI | CriticalAI | 2025-05-14 |
| CVE-2025-47781 | Rallly 安全漏洞 — ralllyCWE-331 | 9.8 | Critical | 2025-05-14 |
| CVE-2025-3769 | WordPress plugin LatePoint 安全漏洞 — LatePoint – Calendar Booking Plugin for Appointments and EventsCWE-639 | 5.3 | Medium | 2025-05-14 |
| CVE-2025-47292 | Cap Collectif 代码问题漏洞 — cap-collectifCWE-502 | 9.8AI | CriticalAI | 2025-05-14 |
| CVE-2025-2875 | Schneider Electric多款产品 安全漏洞 — Modicon Controllers M241 / M251CWE-610 | 7.5 | High | 2025-05-14 |
| CVE-2024-8988 | WordPress plugin PeepSo Core File Uploads 安全漏洞 — PeepSo Core: File UploadsCWE-639 | 5.3 | Medium | 2025-05-14 |
| CVE-2025-3623 | WordPress plugin Uncanny Automator 代码问题漏洞 — Uncanny Automator – Easy Automation, Integration, Webhooks & Workflow Builder PluginCWE-502 | 9.1 | Critical | 2025-05-14 |
| CVE-2025-22892 | Intel OpenVINO model server 资源管理错误漏洞 — OpenVINO™ model server software maintained by Intel(R) | 6.5 | Medium | 2025-05-13 |
| CVE-2025-22844 | Intel Tiber Edge Platform Edge Orchestrator 访问控制错误漏洞 — Edge Orchestrator software for Intel(R) Tiber™ Edge Platform | 4.3 | Medium | 2025-05-13 |
| CVE-2025-20076 | Intel Tiber Edge Platform Edge Orchestrator 访问控制错误漏洞 — Edge Orchestrator software for Intel(R) Tiber™ Edge Platform | 5.0 | Medium | 2025-05-13 |
| CVE-2025-20062 | Intel PROSet/Wireless WiFi 资源管理错误漏洞 — Intel(R) PROSet/Wireless WiFi Software for Windows | 6.1 | Medium | 2025-05-13 |
access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21311 条 CVE 漏洞。