目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21363

access:pre-auth 类型相关 21363 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2025-24382 Dell Unity 操作系统命令注入漏洞 — UnityCWE-78 7.3 High2025-03-28
CVE-2025-22398 Dell Unity 操作系统命令注入漏洞 — UnityCWE-78 9.8 Critical2025-03-28
CVE-2025-24383 Dell Unity 安全漏洞 — UnityCWE-78 9.1 Critical2025-03-28
CVE-2025-2332 WordPress plugin Export All Posts, Products, Orders, Refunds & Users 代码问题漏洞 — Export All Posts, Products, Orders, Refunds & UsersCWE-502 9.8 Critical2025-03-27
CVE-2025-2481 WordPress plugin MediaView 跨站脚本漏洞 — MediaViewCWE-79 6.1 Medium2025-03-27
CVE-2025-28138 TOTOLINK A810R 安全漏洞 — n/a 9.8AICriticalAI2025-03-27
CVE-2025-1440 WordPress plugin Advanced iFrame 输入验证错误漏洞 — Advanced iFrameCWE-20 5.3 Medium2025-03-26
CVE-2025-1514 WordPress plugin Active Products Tables for WooCommerce 输入验证错误漏洞 — Active Products Tables for WooCommerce. Use constructor to create tablesCWE-20 7.3 High2025-03-26
CVE-2025-2009 WordPress plugin Newsletters 跨站脚本漏洞 — NewslettersCWE-79 7.2 High2025-03-26
CVE-2025-1490 WordPress plugin Smart Maintenance Mode 跨站脚本漏洞 — Smart Maintenance ModeCWE-79 6.1 Medium2025-03-26
CVE-2025-2165 WordPress plugin SH Email Alert 跨站脚本漏洞 — SH Email AlertCWE-79 6.1 Medium2025-03-26
CVE-2025-2109 WordPress plugin WP Compress 代码问题漏洞 — WP Compress – Instant Performance & Speed OptimizationCWE-918 5.8 Medium2025-03-25
CVE-2025-2635 WordPress plugin Digital License Manager 跨站脚本漏洞 — Digital License ManagerCWE-79 6.1 Medium2025-03-25
CVE-2025-2319 WordPress plugin EZ SQL Reports Shortcode Widget and DB Backup 跨站请求伪造漏洞 — EZ SQL Reports Shortcode Widget and DB BackupCWE-352 8.8 High2025-03-25
CVE-2024-13690 WordPress plugin WP Church Donation 跨站脚本漏洞 — WP Church DonationCWE-79 7.2 High2025-03-25
CVE-2024-13710 WordPress plugin Estatebud 跨站请求伪造漏洞 — Estatebud – Properties & ListingsCWE-352 4.3 Medium2025-03-25
CVE-2025-1320 WordPress plugin teachPress 跨站请求伪造漏洞 — teachPressCWE-352 4.3 Medium2025-03-25
CVE-2025-2252 WordPress plugin Easy Digital Downloads 信息泄露漏洞 — Easy Digital Downloads – eCommerce Payments and Subscriptions made easyCWE-200 5.3 Medium2025-03-25
CVE-2025-1798 WordPress plugin Design Comuni Italia 安全漏洞 — design-comuni-wordpress-theme 6.1 -2025-03-25
CVE-2024-13617 WordPress plugin aoa-downloadable 安全漏洞 — aoa-downloadable 7.5 -2025-03-25
CVE-2024-13618 WordPress plugin aoa-downloadable 安全漏洞 — aoa-downloadable 7.5 -2025-03-25
CVE-2025-2224 WordPress plugin Directorist 安全漏洞 — Directorist: AI-Powered Business Directory, Listings & Classified AdsCWE-862 5.3 Medium2025-03-25
CVE-2024-45484 B&R Industrial Automation B&R APROL 安全漏洞 — APROLCWE-770 6.5AIMediumAI2025-03-25
CVE-2024-45483 B&R Industrial Automation B&R APROL 访问控制错误漏洞 — APROLCWE-306 6.1AIMediumAI2025-03-25
CVE-2024-45480 B&R Industrial Automation B&R APROL 代码注入漏洞 — B&R APROLCWE-94 9.1AICriticalAI2025-03-25
CVE-2024-10206 B&R Industrial Automation B&R APROL 代码问题漏洞 — APROLCWE-918 8.2AIHighAI2025-03-25
CVE-2024-8313 B&R Industrial Automation B&R APROL 安全漏洞 — APROLCWE-497 8.8AIHighAI2025-03-25
CVE-2025-30091 Tiny MoxieManager 安全漏洞 — MoxieManager PHPCWE-96 9.8AICriticalAI2025-03-25
CVE-2025-1974 Kubernetes ingress-nginx 安全漏洞 — ingress-nginxCWE-653 9.8 Critical2025-03-24
CVE-2023-25610 Fortinet FortiOS和FortiProxy 安全漏洞 — FortiSwitchManagerCWE-124 9.3 Critical2025-03-24

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21363 条 CVE 漏洞。