目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21392

access:pre-auth 类型相关 21392 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2024-13489 WordPress plugin LTL Freight Quotes SQL注入漏洞 — LTL Freight Quotes – Old Dominion EditionCWE-89 7.5 High2025-02-19
CVE-2024-13339 WordPress plugin DeBounce Email Validator 跨站请求伪造漏洞 — DeBounce Email ValidatorCWE-352 6.1 Medium2025-02-19
CVE-2024-13363 WordPress plugin Raptive Ads 跨站脚本漏洞 — Raptive AdsCWE-79 6.1 Medium2025-02-19
CVE-2024-13364 WordPress plugin Raptive Ads 安全漏洞 — Raptive AdsCWE-862 5.3 Medium2025-02-19
CVE-2024-13231 WordPress plugin WordPress Portfolio Builder 安全漏洞 — WordPress Portfolio Builder – Portfolio GalleryCWE-862 5.3 Medium2025-02-19
CVE-2024-13336 WordPress plugin Disable Auto Updates 跨站请求伪造漏洞 — Disable Auto UpdatesCWE-352 4.3 Medium2025-02-19
CVE-2024-13405 WordPress plugin Apptivo Business Site CRM 跨站请求伪造漏洞 — Apptivo Business SiteCWE-352 4.3 Medium2025-02-19
CVE-2024-13468 WordPress plugin Trash Duplicate and 301 Redirect 安全漏洞 — Trash Duplicate and 301 RedirectCWE-862 7.5 High2025-02-19
CVE-2024-13736 WordPress plugin Pure Chat – Live Chat & More! 跨站脚本漏洞 — Pure Chat – Live Chat & More!CWE-79 6.1 Medium2025-02-19
CVE-2024-12339 WordPress plugin Digihood HTML Sitemap 跨站脚本漏洞 — Digihood HTML SitemapCWE-79 6.1 Medium2025-02-19
CVE-2024-12069 WordPress plugin Lexicata 跨站脚本漏洞 — LexicataCWE-79 6.1 Medium2025-02-19
CVE-2024-13711 WordPress plugin Pollin 跨站脚本漏洞 — PollinCWE-79 6.1 Medium2025-02-19
CVE-2024-13719 WordPress plugin PeproDev Ultimate Invoice 安全漏洞 — PeproDev Ultimate InvoiceCWE-862 5.3 Medium2025-02-19
CVE-2024-13712 WordPress plugin Pollin SQL注入漏洞 — PollinCWE-89 4.9 Medium2025-02-19
CVE-2025-0865 WordPress plugin WP Media Category Management 跨站请求伪造漏洞 — WP Media Category ManagementCWE-352 6.5 Medium2025-02-19
CVE-2025-1441 WordPress plugin Royal Elementor Addons and Templates 跨站请求伪造漏洞 — Royal Addons for Elementor – Addons and Templates Kit for ElementorCWE-352 6.1 Medium2025-02-19
CVE-2024-11582 WordPress plugin Subscribe2 跨站脚本漏洞 — Subscribe2 – Form, Email Subscribers & NewslettersCWE-79 7.2 High2025-02-19
CVE-2024-13508 WordPress plugin Booking Package 跨站脚本漏洞 — Booking PackageCWE-79 6.1 Medium2025-02-18
CVE-2025-25284 ZOO-Project 路径遍历漏洞 — ZOO-ProjectCWE-22 6.2 -2025-02-18
CVE-2025-0817 WordPress plugin FormCraft 跨站脚本漏洞 — FormCraftCWE-79 7.2 High2025-02-18
CVE-2025-0521 WordPress plugin Post SMTP 跨站脚本漏洞 — Post SMTP – Complete Email Deliverability and SMTP Solution with Email Logs, Alerts, Backup SMTP & Mobile AppCWE-79 7.2 High2025-02-18
CVE-2024-13681 WordPress plugin Uncode 输入验证错误漏洞 — UncodeCWE-20 7.5 High2025-02-18
CVE-2024-13797 WordPress plugin PressMart 代码注入漏洞 — PressMart - Modern Elementor WooCommerce WordPress ThemeCWE-94 7.3 High2025-02-18
CVE-2024-12860 WordPress plugin CarSpot 安全漏洞 — CarSpot – Dealership Wordpress Classified ThemeCWE-620 9.8 Critical2025-02-18
CVE-2024-13316 WordPress plugin Scratch & Win 安全漏洞 — Scratch & Win – Giveaways and Contests. Boost subscribers, traffic, repeat visits, referrals, sales and moreCWE-862 5.3 Medium2025-02-18
CVE-2024-13718 WordPress plugin Flexible Wishlist for WooCommerce 跨站请求伪造漏洞 — Flexible Wishlist for WooCommerce – Ecommerce Wishlist & Save for laterCWE-352 4.3 Medium2025-02-18
CVE-2025-0423 Cordaware bestinformed 安全漏洞 — bestinformed WebCWE-20 6.1 -2025-02-18
CVE-2025-0864 WordPress plugin Active Products Tables for WooCommerce 跨站脚本漏洞 — Active Products Tables for WooCommerce. Use constructor to create tablesCWE-79 6.1 Medium2025-02-18
CVE-2024-13795 WordPress plugin Ecwid by Lightspeed Ecommerce Shopping Cart 跨站请求伪造漏洞 — Ecwid by Lightspeed Ecommerce Shopping CartCWE-352 4.3 Medium2025-02-18
CVE-2024-13704 WordPress plugin Super Testimonials 安全漏洞 — Super Testimonial – Testimonial & Customer Review Slider Plugin for WordPressCWE-80 7.2 High2025-02-18

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21392 条 CVE 漏洞。