目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1336

100%

access:pre-auth 标签下的 CVE 漏洞 21465

access:pre-auth 类型相关 21465 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2024-11188 WordPress plugin Formidable Forms 跨站脚本漏洞 — Formidable Forms – Contact Form Plugin, Survey, Quiz, Payment, Calculator Form & Custom Form BuilderCWE-79 6.1 Medium2024-11-23
CVE-2024-11361 WordPress plugin PDF Invoices & Packing Slips Generator for WooCommerce 跨站脚本漏洞 — PDF Invoices & Packing Slips Generator for WooCommerceCWE-79 6.1 Medium2024-11-23
CVE-2024-10880 WordPress plugin JobBoardWP 跨站脚本漏洞 — JobBoardWP – Job Board Listings and SubmissionsCWE-79 6.1 Medium2024-11-23
CVE-2024-11415 WordPress plugin WP-Orphanage Extended 跨站请求伪造漏洞 — WP-Orphanage ExtendedCWE-352 8.8 High2024-11-23
CVE-2024-10813 WordPress plugin Product Table for WooCommerce by CodeAstrology 安全漏洞 — Product Table for WooCommerceCWE-862 5.3 Medium2024-11-23
CVE-2024-11362 WordPress plugin Payments Plugin and Checkout Plugin for WooCommerce 跨站脚本漏洞 — PeachPay — Payments & Express Checkout for WooCommerce (supports Stripe, PayPal, Square, Authorize.net, NMI)CWE-79 6.1 Medium2024-11-23
CVE-2024-10961 WordPress plugin Social Login 安全漏洞 — Social LoginCWE-288 9.8 Critical2024-11-23
CVE-2024-10869 WordPress plugin WordPress Brute Force Protection 跨站脚本漏洞 — WordPress Brute Force Protection – Stop Brute Force AttacksCWE-79 6.1 Medium2024-11-23
CVE-2024-11463 WordPress plugin DeBounce Email Validator 跨站脚本漏洞 — DeBounce Email ValidatorCWE-79 6.1 Medium2024-11-23
CVE-2024-52034 mySCADA myPRO 操作系统命令注入漏洞 — myPRO ManagerCWE-78 10.0 Critical2024-11-22
CVE-2024-47407 mySCADA myPRO 操作系统命令注入漏洞 — myPRO ManagerCWE-78 10.0 Critical2024-11-22
CVE-2024-8806 Cohesive Networks VNS3 操作系统命令注入漏洞 — VNS3CWE-78 9.8 -2024-11-22
CVE-2024-8735 WordPress plugin MailMunch 跨站脚本漏洞 — MailMunch – Grow your Email ListCWE-79 6.1 Medium2024-11-22
CVE-2024-11225 WordPress plugin Premium Packages 跨站脚本漏洞 — Premium Packages – Sell Digital Products SecurelyCWE-79 6.1 Medium2024-11-22
CVE-2024-11601 WordPress plugin Sky Addons for Elementor 安全漏洞 — Sky Addons – Elementor Addons with Widgets & TemplatesCWE-862 8.1 High2024-11-22
CVE-2024-45837 AIPHONE IX SYSTEM和AIPHONE IXG SYSTEM 安全漏洞 — IX-MVCWE-321 8.8 -2024-11-22
CVE-2024-39290 AIPHONE IX SYSTEM和AIPHONE IXG SYSTEM 安全漏洞 — IX-MVCWE-522 8.1 -2024-11-22
CVE-2024-52053 Wowza Media Systems Wowza Streaming Engine 跨站脚本漏洞 — Streaming EngineCWE-79 6.1AIMediumAI2024-11-21
CVE-2024-8525 Automated Logic WebCtrl 代码问题漏洞 — WebCTRLCWE-434 9.8AICriticalAI2024-11-21
CVE-2024-28892 GoCast 操作系统命令注入漏洞 — GoCastCWE-78 9.8 Critical2024-11-21
CVE-2024-29224 GoCast 操作系统命令注入漏洞 — GoCastCWE-78 9.8 Critical2024-11-21
CVE-2024-21855 GoCast 访问控制错误漏洞 — GoCastCWE-306 9.8 Critical2024-11-21
CVE-2024-11088 WordPress plugin Simple Membership 安全漏洞 — Simple MembershipCWE-200 5.3 Medium2024-11-21
CVE-2024-11089 WordPress plugin Anonymous Restricted Content 安全漏洞 — Anonymous Restricted ContentCWE-200 5.3 Medium2024-11-21
CVE-2024-10792 WordPress plugin Easiest Funnel Builder For WordPress & WooCommerce by WPFunnels 跨站脚本漏洞 — WPFunnels – Funnel Builder for WooCommerce with Checkout & One Click UpsellCWE-79 6.1 Medium2024-11-21
CVE-2024-10675 WordPress plugin affiliate-toolkit 跨站脚本漏洞 — affiliate-toolkit – Multi-Network Affiliate & Amazon Product DisplayCWE-79 6.1 Medium2024-11-21
CVE-2024-11371 WordPress plugin Theater 跨站脚本漏洞 — Theater for WordPressCWE-79 6.1 Medium2024-11-21
CVE-2024-11456 WordPress plugin Run Contests, Raffles, and Giveaways with ContestsWP 跨站脚本漏洞 — Run Contests, Raffles, and Giveaways with ContestsWPCWE-79 6.1 Medium2024-11-21
CVE-2024-10400 WordPress plugin Tutor LMS SQL注入漏洞 — Tutor LMS – eLearning and online course solutionCWE-89 7.5 High2024-11-21
CVE-2024-10890 WordPress plugin WPAdverts 跨站脚本漏洞 — WPAdverts – Classifieds PluginCWE-79 6.1 Medium2024-11-21

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 21465 条 CVE 漏洞。