目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21425

access:pre-auth 类型相关 21425 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2024-13821 WordPress plugin WP Booking Calendar 授权问题漏洞 — Booking CalendarCWE-285 5.3 Medium2025-02-12
CVE-2024-13600 WordPress plugin Majestic Support 信息泄露漏洞 — Majestic Support – The Leading-Edge Help Desk & Customer Support PluginCWE-200 7.5 High2025-02-12
CVE-2024-13421 WordPress plugin Real Estate 7 安全漏洞 — Real Estate 7 WordPressCWE-266 9.8 Critical2025-02-12
CVE-2024-13749 WordPress plugin StaffList 跨站脚本漏洞 — StaffListCWE-79 6.1 Medium2025-02-12
CVE-2025-0808 WordPress plugin Houzez Property Feed 跨站请求伪造漏洞 — Houzez Property FeedCWE-352 4.3 Medium2025-02-12
CVE-2024-13539 WordPress plugin AForms Eats 安全漏洞 — AForms EatsCWE-209 5.3 Medium2025-02-12
CVE-2024-13554 WordPress plugin Ultimate WordPress Toolkit 安全漏洞 — The Ultimate WordPress Toolkit – WP ExtendedCWE-862 5.3 Medium2025-02-12
CVE-2022-3180 WordPress plugin WPGateway 权限许可和访问控制问题漏洞 — WPGatewayCWE-290 9.8 -2025-02-11
CVE-2025-24406 Adobe Commerce 路径遍历漏洞 — Adobe CommerceCWE-22 7.5 High2025-02-11
CVE-2025-24472 Fortinet FortiOS 安全漏洞 — FortiOSCWE-288 8.1 High2025-02-11
CVE-2025-22399 Dell UCC Edge 代码问题漏洞 — UCC EdgeCWE-918 7.9 High2025-02-11
CVE-2024-35279 Fortinet FortiOS 安全漏洞 — FortiOSCWE-121 7.7 High2025-02-11
CVE-2025-24470 Fortinet FortiPortal 安全漏洞 — FortiPortalCWE-41 8.1 High2025-02-11
CVE-2024-13830 Ivanti Connect Secure 跨站脚本漏洞 — Connect SecureCWE-79 6.1 Medium2025-02-11
CVE-2024-11771 Ivanti CSA 路径遍历漏洞 — Cloud Services ApplicationCWE-22 5.3 Medium2025-02-11
CVE-2025-24812 Siemens SIMATIC S7-1200 安全漏洞 — SIMATIC S7-1200 CPU 1211C AC/DC/RlyCWE-1286 6.5 Medium2025-02-11
CVE-2025-24811 Siemens SIMATIC S7-1200 安全漏洞 — SIMATIC S7-1200 CPU 1211C AC/DC/RlyCWE-404 7.5 High2025-02-11
CVE-2024-54015 Siemens SIPROTEC 5 安全漏洞 — SIPROTEC 5 6MD84 (CP300)CWE-1392 7.5 High2025-02-11
CVE-2024-53648 Siemens SIPROTEC 5 安全漏洞 — SIPROTEC 5 6MD84 (CP300)CWE-489 6.8 Medium2025-02-11
CVE-2024-45386 Siemens SIMATIC PCS和Siemens TIA Administrator 代码问题漏洞 — SIMATIC PCS neo V4.0CWE-613 8.8 High2025-02-11
CVE-2024-23814 Siemens SCALANCE Series 资源管理错误漏洞 — SIDOOR ATD430WCWE-400 5.3 Medium2025-02-11
CVE-2023-37482 Siemens SIMATIC S7-1200和SIMATIC S7-1500 安全漏洞 — SIMATIC Drive Controller CPU 1504D TFCWE-203 5.3 Medium2025-02-11
CVE-2025-0589 Octopus Server 安全漏洞 — Octopus Server 5.3 -2025-02-11
CVE-2025-0181 WordPress plugin WP Foodbakery 安全漏洞 — WP FoodbakeryCWE-288 9.8 Critical2025-02-11
CVE-2025-0180 WordPress plugin WP Foodbakery 安全漏洞 — WP FoodbakeryCWE-269 9.8 Critical2025-02-11
CVE-2025-1145 NetVision Information ISOinsight 跨站脚本漏洞 — ISOinsightCWE-79 6.1 Medium2025-02-11
CVE-2025-1144 Quanxun School Affairs System 安全漏洞 — School Affairs SystemCWE-497 9.8 Critical2025-02-11
CVE-2025-25243 SAP Supplier Relationship Management 路径遍历漏洞 — SAP Supplier Relationship Management (Master Data Management Catalog)CWE-22 8.6 High2025-02-11
CVE-2025-24870 SAP GUI 安全漏洞 — SAP GUI for WindowsCWE-921 6.0 Medium2025-02-11
CVE-2025-24868 SAP HANA 输入验证错误漏洞 — SAP HANA extended application services, advanced model (User Account and Authentication Services)CWE-601 7.1 High2025-02-11

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21425 条 CVE 漏洞。