目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21425

access:pre-auth 类型相关 21425 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2024-13117 WordPress plugin Social Share Buttons 安全漏洞 — Social Share Buttons for WordPress 5.3 -2025-01-27
CVE-2024-56316 Axiros AXESS ACS 安全漏洞 — n/a 7.5 -2025-01-27
CVE-2024-11641 WordPress plugin VikBooking Hotel Booking Engine & PMS 跨站请求伪造漏洞 — VikBooking Hotel Booking Engine & PMSCWE-352 8.8 High2025-01-26
CVE-2024-12334 WordPress plugin WC Affiliate 跨站脚本漏洞 — WC Affiliate – WooCommerce Affiliate PluginCWE-79 6.1 Medium2025-01-26
CVE-2024-11090 WordPress plugin Membership Plugin – Restrict Content 信息泄露漏洞 — Membership Plugin – Restrict ContentCWE-200 5.3 Medium2025-01-26
CVE-2024-10633 WordPress plugin Quiz Maker Business, Developer, and Agency 安全漏洞 — Quiz Maker DeveloperCWE-95 7.3 High2025-01-26
CVE-2024-10574 WordPress plugin Quiz Maker Business, Developer, and Agency 安全漏洞 — Quiz Maker DeveloperCWE-862 7.2 High2025-01-26
CVE-2024-10628 WordPress plugin Quiz Maker Business, Developer, and Agency SQL注入漏洞 — Quiz Maker BusinessCWE-89 7.5 High2025-01-26
CVE-2024-10636 WordPress plugin Quiz Maker Business, Developer, and Agency 跨站脚本漏洞 — Quiz Maker DeveloperCWE-79 6.1 Medium2025-01-26
CVE-2024-35145 IBM Maximo Application Suite 跨站脚本漏洞 — Maximo Application SuiteCWE-79 6.1 Medium2025-01-25
CVE-2024-13562 WordPress plugin Import WP – Export and Import CSV and XML files to WordPress 信息泄露漏洞 — Import WP – Export and Import CSV and XML files to WordPressCWE-200 7.5 High2025-01-25
CVE-2024-12826 WordPress plugin GoHero Store Customizer for WooCommerce 安全漏洞 — GoHero Store Customizer for WooCommerceCWE-862 4.3 Medium2025-01-25
CVE-2024-13467 WordPress plugin WP Contact Form7 Email Spam Blocker 跨站脚本漏洞 — WP Contact Form7 Email Spam BlockerCWE-79 6.1 Medium2025-01-25
CVE-2024-12076 WordPress plugin Target Video Easy Publish 跨站脚本漏洞 — Target Video Easy PublishCWE-79 6.1 Medium2025-01-25
CVE-2024-13709 WordPress plugin Linear 跨站请求伪造漏洞 — LinearCWE-352 4.3 Medium2025-01-25
CVE-2025-0357 WordPress plugin WPBookit 代码问题漏洞 — WPBookitCWE-434 9.8 Critical2025-01-25
CVE-2024-13698 WordPress plugin Jobify - Job Board WordPress 安全漏洞 — Jobify - Job Board WordPress ThemeCWE-862 6.5 Medium2025-01-24
CVE-2024-13545 WordPress plugin Bootstrap Ultimate 路径遍历漏洞 — Bootstrap UltimateCWE-22 9.8 Critical2025-01-24
CVE-2024-13683 WordPress plugin Automate Hub Free by Sperse.IO 跨站请求伪造漏洞 — Automate Hub Free by Sperse.IOCWE-352 4.3 Medium2025-01-24
CVE-2025-23011 Fedora 安全漏洞 — Fedora RepositoryCWE-23 8.8 High2025-01-23
CVE-2024-12078 ECOVACS robot lawnmowers和vacuums 安全漏洞 — Unspecified robotsCWE-321 6.3 Medium2025-01-23
CVE-2024-52330 ECOVACS robot lawnmowers和vacuums 信任管理问题漏洞 — DEEBOT X5 PRO PLUSCWE-295 7.4 High2025-01-23
CVE-2024-52329 ECOVACS HOME mobile app plugins 信任管理问题漏洞 — ECOVACS HOMECWE-295 7.4 High2025-01-23
CVE-2024-52325 ECOVACS robot lawnmowers和vacuums 命令注入漏洞 — GOAT G1CWE-77 9.6 Critical2025-01-23
CVE-2025-0637 Microserver Beta10 授权问题漏洞 — Beta10CWE-287 9.8 Critical2025-01-23
CVE-2025-23006 SonicWALL SMA1000 代码问题漏洞 — SMA1000CWE-502 9.8 -2025-01-23
CVE-2024-13422 WordPress plugin SEO Blogger to WordPress Migration using 301 Redirection 跨站脚本漏洞 — SEO Blogger to WordPress Migration using 301 RedirectionCWE-79 6.1 Medium2025-01-23
CVE-2024-13234 WordPress plugin Product Table by WBW SQL注入漏洞 — Product Table for WooCommerce by WBWCWE-89 7.5 High2025-01-23
CVE-2025-0635 M-Files Server 安全漏洞 — M-Files ServerCWE-770 7.5 -2025-01-23
CVE-2024-55971 Logitime WebClock 安全漏洞 — n/a 9.8 -2025-01-23

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21425 条 CVE 漏洞。