目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21462

access:pre-auth 类型相关 21462 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2024-12167 WordPress plugin Shortcodes Blocks Creator Ultimate 跨站脚本漏洞 — Shortcodes Blocks Creator UltimateCWE-79 6.1 Medium2024-12-07
CVE-2024-12257 WordPress plugin CardGate Payments for WooCommerce 跨站脚本漏洞 — CardGate Payments for WooCommerceCWE-79 6.1 Medium2024-12-07
CVE-2024-12166 WordPress plugin Shortcodes Blocks Creator Ultimate 跨站脚本漏洞 — Shortcodes Blocks Creator UltimateCWE-79 6.1 Medium2024-12-07
CVE-2024-10046 WordPress plugin افزونه پیامک ووکامرس Persian WooCommerce SMS 跨站脚本漏洞 — افزونه پیامک ووکامرس Persian WooCommerce SMSCWE-79 6.1 Medium2024-12-07
CVE-2024-11943 WordPress plugin 워드프레스 결제 심플페이 – 우커머스 결제 플러그인 跨站脚本漏洞 — 워드프레스 결제 심플페이 – 우커머스 결제 플러그인CWE-79 6.1 Medium2024-12-07
CVE-2024-11436 WordPress plugin Pie Forms 跨站脚本漏洞 — Pie Forms — Drag & Drop Form BuilderCWE-79 6.1 Medium2024-12-07
CVE-2024-11329 WordPress plugin Comfino Payment Gateway 跨站脚本漏洞 — Comfino Payment GatewayCWE-79 6.1 Medium2024-12-07
CVE-2024-52558 Planet WGS-804HPT 安全漏洞 — Planet WGS-804HPTCWE-191 5.3 Medium2024-12-06
CVE-2024-52320 Planet WGS-804HPT 安全漏洞 — Planet WGS-804HPTCWE-78 9.8 Critical2024-12-06
CVE-2024-48871 Planet WGS-804HPT 安全漏洞 — Planet WGS-804HPTCWE-121 9.8 Critical2024-12-06
CVE-2024-10516 WordPress plugin Swift Performance Lite 安全漏洞 — Swift Performance LiteCWE-22 8.1 High2024-12-06
CVE-2024-10774 SICK InspectorP61x和SICK InspectorP62x 安全漏洞 — SICK InspectorP61xCWE-306 7.3 High2024-12-06
CVE-2024-11289 WordPress plugin Soledad 安全漏洞 — SoledadCWE-98 8.1 High2024-12-06
CVE-2024-11460 WordPress plugin Verowa Connect 安全漏洞 — Verowa ConnectCWE-89 7.5 High2024-12-06
CVE-2024-11728 WordPress plugin KiviCare 安全漏洞 — KiviCare – Clinic & Patient Management System (EHR)CWE-89 7.5 High2024-12-06
CVE-2024-11204 WordPress plugin ForumWP 跨站脚本漏洞 — ForumWP – Forum & Discussion BoardCWE-79 6.1 Medium2024-12-06
CVE-2024-11687 WordPress plugin Next-Cart Store to WooCommerce Migration 跨站脚本漏洞 — Next-Cart Store to WooCommerce MigrationCWE-79 6.1 Medium2024-12-06
CVE-2024-12155 WordPress plugin SV100 Companion 安全漏洞 — SV100 CompanionCWE-862 9.8 Critical2024-12-06
CVE-2024-12028 WordPress plugin Friends 安全漏洞 — FriendsCWE-862 5.3 Medium2024-12-06
CVE-2024-9706 WordPress plugin Ultimate Coming Soon & Maintenance 安全漏洞 — Ultimate Coming Soon & MaintenanceCWE-862 5.3 Medium2024-12-06
CVE-2024-11276 WordPress plugin PDF Builder for WooCommerce 跨站脚本漏洞 — PDF Builder for WooCommerce. Create invoices,packing slips and moreCWE-79 6.1 Medium2024-12-06
CVE-2024-11336 WordPress plugin Clickbank 跨站请求伪造漏洞 — Clickbank WordPress Plugin (Storefront)CWE-352 6.1 Medium2024-12-06
CVE-2024-11368 WordPress plugin Splash Sync 跨站脚本漏洞 — Splash SyncCWE-79 6.1 Medium2024-12-06
CVE-2024-11292 WordPress plugin WP Private Content Plus 安全漏洞 — WP Private Content PlusCWE-200 5.3 Medium2024-12-06
CVE-2024-10879 WordPress plugin ForumWP 跨站脚本漏洞 — ForumWP – Forum & Discussion BoardCWE-79 6.1 Medium2024-12-06
CVE-2024-11444 WordPress plugin CLUEVO LMS, E-Learning Platform 跨站请求伪造漏洞 — CLUEVO LMS, E-Learning PlatformCWE-352 4.3 Medium2024-12-06
CVE-2024-12060 WordPress plugin WP Media Optimizer 跨站脚本漏洞 — WP Media Optimizer (.webp)CWE-79 6.1 Medium2024-12-06
CVE-2024-12003 WordPress plugin WP System 跨站请求伪造漏洞 — WP SystemCWE-352 6.1 Medium2024-12-06
CVE-2024-11178 WordPress plugin Login With OTP 安全漏洞 — Login with OTPCWE-288 8.1 High2024-12-06
CVE-2024-11585 WordPress plugin WP Hide & Security Enhancer 安全漏洞 — WP Hide & Security EnhancerCWE-22 7.5 High2024-12-06

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21462 条 CVE 漏洞。