目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21460

access:pre-auth 类型相关 21460 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2024-12559 WordPress plugin ClickDesigns 安全漏洞 — ClickDesignsCWE-862 5.3 Medium2025-01-07
CVE-2024-12416 WordPress plugin Woomotiv SQL注入漏洞 — Live Sales Notification for Woocommerce – WoomotivCWE-89 7.5 High2025-01-07
CVE-2024-12419 WordPress plugin CF7 WOW Styler 代码注入漏洞 — WOW Styler for CF7 – Visual Styler for Contact Form 7 FormsCWE-94 6.5 Medium2025-01-07
CVE-2024-12541 WordPress plugin Chative Live chat and Chatbot 跨站请求伪造漏洞 — Chative Live chat and ChatbotCWE-352 5.4 Medium2025-01-07
CVE-2024-12402 WordPress plugin Themes Coder 安全漏洞 — TC Ecommerce – Create Android & iOS Apps for WooCommerceCWE-288 9.8 Critical2025-01-07
CVE-2024-12557 WordPress plugin Transporters.io 跨站请求伪造漏洞 — Transporters.ioCWE-352 6.1 Medium2025-01-07
CVE-2024-11437 WordPress plugin Timeline Designer SQL注入漏洞 — Timeline DesignerCWE-89 4.9 Medium2025-01-07
CVE-2024-55555 Invoice Ninja 代码问题漏洞 — n/a 8.1 -2025-01-07
CVE-2024-55556 Crater 代码问题漏洞 — n/a 8.1 -2025-01-07
CVE-2024-11356 WordPress plugin Tourmaster 安全漏洞 — tourmaster 6.1 -2025-01-06
CVE-2024-54763 ipTIME A2004 安全漏洞 — n/a 7.5 -2025-01-06
CVE-2024-54764 ipTIME A2004 安全漏洞 — n/a 7.5 -2025-01-06
CVE-2024-54767 AVM FRITZ!Box 7530 AX 安全漏洞 — n/a 7.5 -2025-01-06
CVE-2024-10957 WordPress plugin UpdraftPlus 代码问题漏洞 — UpdraftPlus: WP Backup & Migration PluginCWE-502 8.8 High2025-01-04
CVE-2024-12279 WordPress plugin WP Social AutoConnect 跨站请求伪造漏洞 — WP Social AutoConnectCWE-352 6.1 Medium2025-01-04
CVE-2024-12221 WordPress plugin Turnkey bbPress by WeaverTheme 跨站脚本漏洞 — Turnkey bbPress by WeaverThemeCWE-79 6.1 Medium2025-01-04
CVE-2024-10932 WordPress plugin Backup Migration 代码问题漏洞 — BackupBliss – Backup & Migration with Free Cloud StorageCWE-502 8.8 High2025-01-04
CVE-2024-11974 WordPress plugin Media Library Assistant 跨站脚本漏洞 — Media Library AssistantCWE-79 6.1 Medium2025-01-04
CVE-2024-12545 WordPress plugin Scratch & Win 请求伪造漏洞 — Scratch & Win – Giveaways and Contests. Boost subscribers, traffic, repeat visits, referrals, sales and moreCWE-352 5.4 Medium2025-01-04
CVE-2024-12047 WordPress plugin WP Compress 跨站脚本漏洞 — WP Compress – Instant Performance & Speed OptimizationCWE-79 6.1 Medium2025-01-04
CVE-2024-12701 WordPress plugin WP Smart Import 跨站脚本漏洞 — WP Smart Import : Import any XML File to WordPressCWE-79 6.1 Medium2025-01-04
CVE-2024-11733 WordPress plugin The WordPress Popular Posts 代码注入漏洞 — WP Popular PostsCWE-94 7.3 High2025-01-03
CVE-2024-9950 ForeScout SecureConnector 安全漏洞 — SecureConnectorCWE-379 6.2 -2025-01-02
CVE-2024-13061 2100 TECHNOLOGY Electronic Official Document Management System 安全漏洞 — Official Document Management SystemCWE-290 9.8 Critical2024-12-31
CVE-2024-12106 Progress Software WhatsUp Gold 访问控制错误漏洞 — WhatsUp GoldCWE-306 9.4 Critical2024-12-31
CVE-2024-11972 WordPress plugin Hunk Companion 安全漏洞 — Hunk Companion 9.1 -2024-12-31
CVE-2024-12839 CHANGING CGFIDO 安全漏洞 — CGFIDOCWE-294 8.8 High2024-12-31
CVE-2024-12856 Four-Faith F3x24和Four-Faith F3x36 安全漏洞 — F3x24CWE-78 7.2 High2024-12-27
CVE-2024-3393 Palo Alto Networks PAN-OS 安全漏洞 — Cloud NGFWCWE-754 7.5 -2024-12-27
CVE-2020-9086 Huawei 4G Router B612安全漏洞 — HUAWEI 4G Router B612CWE-124 4.3 Medium2024-12-27

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21460 条 CVE 漏洞。