目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1325

100%
请我们喝杯咖啡

access:pre-auth 标签下的 CVE 漏洞 20447

access:pre-auth 类型相关 20447 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2026-39576 WordPress SingleMalt主题<=1.5 PHP对象注入漏洞 — SingleMaltCWE-502 8.1 High2026-06-17
CVE-2026-39560 WordPress Hiroshi主题<=1.5.1 PHP对象注入漏洞 — HiroshiCWE-502 8.1 High2026-06-17
CVE-2026-39559 WordPress Uppercase主题本地文件包含漏洞 — UppercaseCWE-98 8.1 High2026-06-17
CVE-2026-39556 WordPress Konsept主题<=1.9 反序列化漏洞 — KonseptCWE-502 8.1 High2026-06-17
CVE-2026-39445 WordPress Alukas主题 < 3.0.0 PHP对象注入漏洞 — AlukasCWE-502 8.1 High2026-06-17
CVE-2026-39523 WordPress Solene Core插件<=2.3.2本地文件包含漏洞 — Solene CoreCWE-98 8.1 High2026-06-17
CVE-2026-39442 WordPress PressMart主题<=1.2.26 PHP对象注入漏洞 — PressMartCWE-502 8.1 High2026-06-17
CVE-2025-69175 ThemeREX Line Agency 代码注入漏洞 — Line AgencyCWE-98 8.1 High2026-06-17
CVE-2025-69174 ThemeREX Etude 代码注入漏洞 — EtudeCWE-98 8.1 High2026-06-17
CVE-2025-69166 ThemeREX Gunslinger 代码注入漏洞 — GunslingerCWE-98 8.1 High2026-06-17
CVE-2025-69170 themerex Eventicity 代码注入漏洞 — EventicityCWE-98 8.1 High2026-06-17
CVE-2025-69164 ThemeREX Skyward 代码注入漏洞 — SkywardCWE-98 8.1 High2026-06-17
CVE-2025-69157 themerex Gamic 代码注入漏洞 — GamicCWE-98 8.1 High2026-06-17
CVE-2025-69158 themerex Granola 代码注入漏洞 — GranolaCWE-98 8.1 High2026-06-17
CVE-2025-69144 themerex Preservation 代码注入漏洞 — PreservationCWE-98 8.1 High2026-06-17
CVE-2025-69140 WordPress SweetDate Core < 1.1.5 反射型XSS漏洞 — SweetDate CoreCWE-79 7.1 High2026-06-17
CVE-2025-69127 themerex Plumbing 反序列化漏洞 — PlumbingCWE-502 9.8 Critical2026-06-17
CVE-2025-69123 themerex Snow Club 代码注入漏洞 — Snow ClubCWE-98 8.1 High2026-06-17
CVE-2025-69126 themerex Fortius 代码注入漏洞 — FortiusCWE-98 8.1 High2026-06-17
CVE-2025-69115 themerex LuxMed | Medicine & Healthcare Doctor WordPress Theme 代码注入漏洞 — LuxMed | Medicine & Healthcare Doctor WordPress ThemeCWE-98 8.1 High2026-06-17
CVE-2025-69120 themerex Dazzle 代码注入漏洞 — DazzleCWE-98 8.1 High2026-06-17
CVE-2025-69111 themerex Reisen 反序列化漏洞 — ReisenCWE-502 9.8 Critical2026-06-17
CVE-2025-68524 themegoods Avante 跨站脚本漏洞 — AvanteCWE-79 7.1 High2026-06-17
CVE-2025-69106 themerex Imba 代码注入漏洞 — ImbaCWE-98 8.1 High2026-06-17
CVE-2025-59554 Advanced Ads GmbH Advanced Ads – Tracking SQL注入漏洞 — Advanced Ads – TrackingCWE-89 9.3 Critical2026-06-17
CVE-2025-15657 Mojoomla School Management 授权问题漏洞 — School ManagementCWE-639 5.3 Medium2026-06-17
CVE-2026-54811 tips and tricks hq WP eMember SQL注入漏洞 — WP eMemberCWE-89 9.3 Critical2026-06-17
CVE-2026-54807 ThemeGrill Registration Form for WooCommerce 权限许可和访问控制问题漏洞 — Registration Form for WooCommerceCWE-266 9.8 Critical2026-06-17
CVE-2026-54806 melapress wp activity log 反序列化漏洞 — WP Activity LogCWE-502 9.8 Critical2026-06-17
CVE-2026-54802 Cozy Vision Technologies Pvt. Ltd SMS Alert Order Notifications 授权问题漏洞 — SMS Alert Order NotificationsCWE-862 7.5 High2026-06-17

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 20447 条 CVE 漏洞。