目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21462

access:pre-auth 类型相关 21462 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2024-11462 WordPress plugin Filestack Official 跨站脚本漏洞 — Filestack WP UploadCWE-79 6.1 Medium2024-12-14
CVE-2024-12578 WordPress plugin Tickera – WordPress Event Ticketing 信息泄露漏洞 — Tickera – Sell Tickets & Manage EventsCWE-200 5.3 Medium2024-12-14
CVE-2024-12555 WordPress plugin SIP Calculator 跨站请求伪造漏洞 — SIP CalculatorCWE-352 6.1 Medium2024-12-14
CVE-2024-28980 Dell RecoverPoint for Virtual Machines 加密问题漏洞 — RecoverPoint for Virtual MachinesCWE-327 6.5 Medium2024-12-13
CVE-2024-48007 Dell RecoverPoint for Virtual Machines 安全漏洞 — RecoverPoint for Virtual Machines 5.3 Medium2024-12-13
CVE-2024-11986 CrushFTP 安全漏洞 — CrushFTPCWE-79 9.6 Critical2024-12-13
CVE-2024-9608 WordPress plugin MyParcel 跨站脚本漏洞 — MyParcelCWE-79 6.1 Medium2024-12-13
CVE-2024-9290 WordPress plugin Super Backup & Clone 代码问题漏洞 — Super Backup & Clone - Migrate for WordPressCWE-434 9.8 Critical2024-12-13
CVE-2024-10783 WordPress plugin MainWP Child 安全漏洞 — MainWP Child – Securely Connects to the MainWP Dashboard to Manage Multiple SitesCWE-862 8.1 High2024-12-13
CVE-2024-12309 WordPress plugin Rate My Post – Star Rating Plugin by FeedbackWP 安全漏洞 — Rate My Post – Star Rating Plugin by FeedbackWPCWE-639 5.3 Medium2024-12-13
CVE-2024-12417 WordPress plugin Simple Link Directory 代码注入漏洞 — Simple Link DirectoryCWE-94 6.5 Medium2024-12-13
CVE-2024-12414 WordPress plugin Themify Store Locator 跨站请求伪造漏洞 — Themify Store LocatorCWE-352 4.3 Medium2024-12-13
CVE-2024-12420 WordPress plugin WPMobile.App 代码注入漏洞 — WPMobile.AppCWE-94 6.5 Medium2024-12-13
CVE-2024-12421 WordPress plugin The Coupon Affiliates 代码注入漏洞 — Coupon Affiliates – Affiliate Plugin for WooCommerceCWE-94 6.5 Medium2024-12-13
CVE-2024-11809 WordPress plugin Primer MyData for Woocommerce 跨站脚本漏洞 — Primer MyData for WoocommerceCWE-79 6.1 Medium2024-12-13
CVE-2024-12574 WordPress plugin SVG Shortcode 跨站脚本漏洞 — SVG ShortcodeCWE-79 5.4 Medium2024-12-13
CVE-2024-12579 WordPress plugin Minify HTML 资源管理错误漏洞 — Minify HTMLCWE-400 5.3 Medium2024-12-13
CVE-2024-12300 WordPress plugin AR for WordPress 安全漏洞 — AR for WordPressCWE-862 3.7 Low2024-12-13
CVE-2024-12572 WordPress plugin Hello In All Languages 跨站请求伪造漏洞 — Hello In All LanguagesCWE-352 6.1 Medium2024-12-13
CVE-2019-25221 WordPress plugin Responsive Filterable Portfolio SQL注入漏洞 — Responsive Filterable PortfolioCWE-89 6.5 Medium2024-12-13
CVE-2024-55956 Cleo多款产品 安全漏洞 — n/a 9.8 -2024-12-13
CVE-2024-28145 Image Access Scan2Net 安全漏洞 — Scan2NetCWE-89 9.8 -2024-12-12
CVE-2024-12160 WordPress plugin Seraphinite Bulk Discounts for WooCommerce 跨站脚本漏洞 — Seraphinite Bulk Discounts for WooCommerceCWE-79 6.1 Medium2024-12-12
CVE-2024-12333 WordPress plugin WoodMart 代码注入漏洞 — WoodmartCWE-94 6.5 Medium2024-12-12
CVE-2024-12312 WordPress plugin Print Science Designer 代码问题漏洞 — Print Science DesignerCWE-502 8.1 High2024-12-12
CVE-2024-11052 WordPress plugin Ninja Forms 跨站脚本漏洞 — Ninja Forms – The Contact Form Builder That Grows With YouCWE-79 7.2 High2024-12-12
CVE-2024-12265 WordPress plugin Web3 Crypto Payments by DePay for WooCommerce 安全漏洞 — Web3 Crypto Payments by DePay for WooCommerceCWE-862 5.3 Medium2024-12-12
CVE-2024-10124 WordPress plugin Vayu Blocks 访问控制错误漏洞 — Vayu Blocks – Website Builder for the Block EditorCWE-284 9.8 Critical2024-12-12
CVE-2024-12255 WordPress plugin Accept Stripe Payments Using Contact Form 安全漏洞 — Accept Stripe Payments Using Contact Form 7CWE-200 5.3 Medium2024-12-12
CVE-2024-12072 WordPress plugin Analytics Cat 跨站脚本漏洞 — Analytics Cat – Google Analytics Made EasyCWE-79 6.1 Medium2024-12-12

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21462 条 CVE 漏洞。