目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21460

access:pre-auth 类型相关 21460 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2025-20126 Cisco ThousandEyes Endpoint Agent 信任管理问题漏洞 — Cisco ThousandEyes Endpoint AgentCWE-295 4.8 Medium2025-01-08
CVE-2025-22137 Pingvin Share 代码问题漏洞 — pingvin-shareCWE-20 9.8 Critical2025-01-08
CVE-2024-12337 WordPress plugin Shipping via Planzer for WooCommerce 跨站脚本漏洞 — Shipping via Planzer for WooCommerceCWE-79 6.1 Medium2025-01-08
CVE-2024-11423 WordPress plugin Ultimate Gift Cards for WooCommerce 安全漏洞 — Gift Cards for WooCommerce ProCWE-862 7.5 High2025-01-08
CVE-2024-12712 WordPress plugin Shopping Cart & eCommerce Store 安全漏洞 — Shopping Cart & eCommerce StoreCWE-862 5.3 Medium2025-01-08
CVE-2024-11350 WordPress plugin AdForest 授权问题漏洞 — AdForestCWE-640 9.8 Critical2025-01-08
CVE-2024-11939 WordPress plugin Cost Calculator Builder PRO SQL注入漏洞 — Cost Calculator Builder PROCWE-89 7.5 High2025-01-08
CVE-2024-9939 WordPress plugin WordPress File Upload 路径遍历漏洞 — Iptanus File UploadCWE-22 7.5 High2025-01-08
CVE-2024-11635 WordPress plugin WordPress File Upload 代码注入漏洞 — Iptanus File UploadCWE-94 9.8 Critical2025-01-08
CVE-2024-11613 WordPress plugin WordPress File Upload 代码注入漏洞 — Iptanus File UploadCWE-94 9.8 Critical2025-01-08
CVE-2024-10585 WordPress plugin InfiniteWP Client 路径遍历漏洞 — InfiniteWP ClientCWE-22 5.3 Medium2025-01-08
CVE-2024-12713 WordPress plugin SureForms 安全漏洞 — SureForms – Contact Form, Payment Form & Other Custom Form BuilderCWE-862 5.3 Medium2025-01-08
CVE-2024-50603 Aviatrix Controller 操作系统命令注入漏洞 — ControllerCWE-78 10.0 Critical2025-01-08
CVE-2025-21623 ClipBucket 安全漏洞 — clipbucket-v5CWE-22 7.5 High2025-01-07
CVE-2024-12738 WordPress plugin User Profile Builder 跨站脚本漏洞 — User Profile Builder – Beautiful User Registration Forms, User Profiles & User Role EditorCWE-79 6.1 Medium2025-01-07
CVE-2024-12711 WordPress plugin RSVP and Event Management 安全漏洞 — RSVP and Event ManagementCWE-862 5.3 Medium2025-01-07
CVE-2024-12316 WordPress plugin Jupiter X Core 安全漏洞 — Jupiter X CoreCWE-862 5.3 Medium2025-01-07
CVE-2024-12152 WordPress plugin MIPL WC Multisite Sync 路径遍历漏洞 — MIPL Multistore Sync for WooCommerce. Sync Products, Stock and Orders.CWE-22 7.5 High2025-01-07
CVE-2024-12077 WordPress plugin Booking Calendar 跨站脚本漏洞 — Booking calendar, Appointment Booking SystemCWE-79 6.1 Medium2025-01-07
CVE-2024-10866 WordPress plugin Export Import Menus 安全漏洞 — Export Import MenusCWE-862 5.3 Medium2025-01-07
CVE-2024-9354 WordPress plugin Estatik Mortgage Calculator 跨站脚本漏洞 — Estatik Mortgage CalculatorCWE-79 6.1 Medium2025-01-07
CVE-2024-11282 WordPress plugin Passster 信息泄露漏洞 — Passster – Password Protect Pages and ContentCWE-200 5.3 Medium2025-01-07
CVE-2024-12384 WordPress plugin Binary MLM Woocommerce 跨站脚本漏洞 — Binary MLM For WooCommerceCWE-79 6.1 Medium2025-01-07
CVE-2024-12383 WordPress plugin Binary MLM Woocommerce 跨站请求伪造漏洞 — Binary MLM For WooCommerceCWE-352 6.1 Medium2025-01-07
CVE-2024-12438 WordPress plugin FlickRocket 跨站脚本漏洞 — Digital Content Delivery (incl. DRM) by Flickrocket for WooCommerceCWE-79 6.1 Medium2025-01-07
CVE-2024-12633 WordPress plugin JoomSport 跨站脚本漏洞 — JoomSport – for Sports: Team & League, Football, Hockey & moreCWE-79 7.1 High2025-01-07
CVE-2024-12535 WordPress plugin Host PHP Info 安全漏洞 — Host PHP InfoCWE-862 8.6 High2025-01-07
CVE-2024-12261 WordPress plugin SmartEmailing.cz 跨站脚本漏洞 — SmartEmailingCWE-79 6.1 Medium2025-01-07
CVE-2024-12849 WordPress plugin Error Log Viewer By WP Guru 路径遍历漏洞 — Error Log Viewer By WP GuruCWE-22 7.5 High2025-01-07
CVE-2024-11369 WordPress plugin Store credit / Gift cards for woocommerce 跨站脚本漏洞 — Store credit / Gift cards for woocommerceCWE-79 6.1 Medium2025-01-07

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21460 条 CVE 漏洞。