目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21460

access:pre-auth 类型相关 21460 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2024-11349 WordPress plugin AdForest 安全漏洞 — AdForestCWE-288 9.8 Critical2024-12-21
CVE-2024-11811 WordPress plugin Feedify – Web Push Notifications 跨站脚本漏洞 — Feedify – Web Push NotificationsCWE-79 6.1 Medium2024-12-20
CVE-2024-12867 Arctic Security Arctic Hub 代码问题漏洞 — Arctic HubCWE-918 9.1 -2024-12-20
CVE-2024-12014 eSigna eSignaViewer 安全漏洞 — eSignaCWE-20 7.5 -2024-12-20
CVE-2024-7726 Kioxia CM6、PM6和PM7 安全漏洞 — CM6CWE-306 6.1 -2024-12-20
CVE-2024-11806 WordPress plugin PKT1 Centro de envios 跨站脚本漏洞 — PKT1 Centro de enviosCWE-79 6.1 Medium2024-12-20
CVE-2024-11331 WordPress plugin استخراج محصولات ووکامرس برای آیسی 跨站脚本漏洞 — استخراج محصولات ووکامرس برای آیسیCWE-79 6.1 Medium2024-12-20
CVE-2024-11297 WordPress plugin Page Restriction WordPress 安全漏洞 — Page and Post RestrictionCWE-200 5.3 Medium2024-12-20
CVE-2024-11812 WordPress plugin Wtyczka SeoPilot dla WP 跨站请求伪造漏洞 — Wtyczka SeoPilot dla WPCWE-352 6.1 Medium2024-12-20
CVE-2024-12571 WordPress plugin LotsOfLocales 安全漏洞 — Store Locator for WordPress with Google Maps – LotsOfLocalesCWE-98 9.8 Critical2024-12-20
CVE-2020-9250 Micro Focus Vibe 跨站脚本漏洞 — HUAWEI Mate 20 ProCWE-287 3.3 Low2024-12-20
CVE-2024-12727 Sophos Firewall 安全漏洞 — Sophos FirewallCWE-89 9.8 Critical2024-12-19
CVE-2024-56159 Astro 安全漏洞 — astroCWE-219 7.5 -2024-12-19
CVE-2024-12626 WordPress plugin AutomatorWP 跨站脚本漏洞 — AutomatorWP – Automator plugin for no-code automations, webhooks & custom integrations in WordPressCWE-79 9.6 Critical2024-12-19
CVE-2024-11768 WordPress plugin Download Manager 授权问题漏洞 — Download ManagerCWE-285 5.3 Medium2024-12-19
CVE-2024-11740 WordPress plugin Download Manager 代码注入漏洞 — Download ManagerCWE-94 7.3 High2024-12-19
CVE-2023-21586 Adobe Acrobat Reader 代码问题漏洞 — Acrobat ReaderCWE-476 5.5 Medium2024-12-18
CVE-2024-11291 WordPress plugin Paid Membership Subscriptions 信息泄露漏洞 — Paid Membership Subscriptions – Effortless Memberships, Recurring Payments & Content RestrictionCWE-200 5.3 Medium2024-12-18
CVE-2024-11912 WordPress plugin Travel Booking SQL注入漏洞 — Travel Booking WordPress ThemeCWE-89 7.5 High2024-12-18
CVE-2024-12454 WordPress plugin SliceWP Affiliates 跨站请求伪造漏洞 — Affiliate Program Suite — SliceWP AffiliatesCWE-352 6.1 Medium2024-12-18
CVE-2024-12554 WordPress plugin Peter’s Custom Anti-Spam 跨站请求伪造漏洞 — Peter’s Custom Anti-SpamCWE-352 5.4 Medium2024-12-18
CVE-2024-11295 WordPress plugin Simple Page Access Restriction 信息泄露漏洞 — Simple Page Access RestrictionCWE-200 5.3 Medium2024-12-18
CVE-2024-12287 WordPress plugin Biagiotti Membership 授权问题漏洞 — Biagiotti MembershipCWE-287 9.8 Critical2024-12-18
CVE-2024-12698 Red Hat OpenShift 资源管理错误漏洞 CWE-400 6.5 Medium2024-12-18
CVE-2024-12250 WordPress plugin Accept Authorize.NET Payments Using Contact Form 信息泄露漏洞 — Accept Authorize.NET Payments Using Contact Form 7CWE-200 5.3 Medium2024-12-18
CVE-2024-11254 WordPress plugin AMP for WP 跨站脚本漏洞 — AMP for WP – Accelerated Mobile PagesCWE-79 6.1 Medium2024-12-18
CVE-2024-12025 WordPress plugin Collapsing Categories SQL注入漏洞 — Collapsing CategoriesCWE-89 7.5 High2024-12-18
CVE-2024-11280 WordPress plugin PPWP – Password Protect Pages 信息泄露漏洞 — PPWP – Password Protect PagesCWE-200 5.3 Medium2024-12-17
CVE-2024-12395 WordPress plugin WooCommerce Additional Fees On Checkout (Free) 跨站脚本漏洞 — Additional Fees For WooCommerce CheckoutCWE-79 6.1 Medium2024-12-17
CVE-2024-9654 WordPress plugin Easy Digital Downloads 安全漏洞 — Easy Digital Downloads – eCommerce Payments and Subscriptions made easyCWE-863 3.7 Low2024-12-17

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21460 条 CVE 漏洞。