目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1325

100%
请我们喝杯咖啡

access:pre-auth 标签下的 CVE 漏洞 20357

access:pre-auth 类型相关 20357 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2026-26027 GLPI 访问控制错误漏洞 — glpiCWE-79 7.5 High2026-04-06
CVE-2026-30613 AZIOT 1 Node Smart Switch 安全漏洞 — n/a 4.6AIMediumAI2026-04-06
CVE-2026-4272 Honeywell Handheld Scanners 安全漏洞 — Barcode ScannersCWE-306 8.1 High2026-04-05
CVE-2019-25675 eDirectory SQL注入漏洞 — eDirectoryCWE-89 8.2 High2026-04-05
CVE-2019-25694 KADOS SQL注入漏洞 — Kados R10 GreenBeeCWE-89 8.2 High2026-04-05
CVE-2019-25688 KADOS SQL注入漏洞 — Kados GreenBeeCWE-89 8.2 High2026-04-05
CVE-2019-25687 WISDOM Pegasus CMS 路径遍历漏洞 — Pegasus CMSCWE-22 9.8 Critical2026-04-05
CVE-2019-25686 Core FTP 访问控制错误漏洞 — Core FTPCWE-306 7.5 High2026-04-05
CVE-2019-25684 OpenDocMan SQL注入漏洞 — OpenDocManCWE-89 8.2 High2026-04-05
CVE-2019-25680 Advance Gift Shop Pro Script SQL注入漏洞 — Advance Gift Shop Pro ScriptCWE-89 8.2 High2026-04-05
CVE-2019-25678 C4G Basic Laboratory Information System 访问控制错误漏洞 — Basic Laboratory Information SystemCWE-306 8.2 High2026-04-05
CVE-2019-25676 Ask Expert Script 跨站脚本漏洞 — Ask Expert ScriptCWE-79 8.2 High2026-04-05
CVE-2019-25674 Victor CMS SQL注入漏洞 — CMSsiteCWE-89 8.2 High2026-04-05
CVE-2019-25672 PilusCart SQL注入漏洞 — PilusCartCWE-89 8.2 High2026-04-05
CVE-2019-25668 News Website Script SQL注入漏洞 — News Website ScriptCWE-89 8.2 High2026-04-05
CVE-2019-25662 Montala ResourceSpace SQL注入漏洞 — ResourceSpaceCWE-89 8.2 High2026-04-05
CVE-2026-5526 Tenda 4G03 Pro 访问控制错误漏洞 — 4G03 ProCWE-284 7.3 High2026-04-04
CVE-2018-25246 Wikipedia 访问控制错误漏洞 — WikipediaCWE-306 7.5 High2026-04-04
CVE-2018-25244 Eco Search 安全漏洞 — Eco SearchCWE-1312 6.2 Medium2026-04-04
CVE-2018-25241 VPN Browser+ 安全漏洞 — VPN Browser+CWE-306 7.5 High2026-04-04
CVE-2016-20053 REDAXO 跨站请求伪造漏洞 — Redaxo CMSCWE-352 5.3 Medium2026-04-04
CVE-2016-20051 sNews 跨站请求伪造漏洞 — Snews CMS Cross Site Request ForgeryCWE-352 5.3 Medium2026-04-04
CVE-2016-20052 sNews 代码问题漏洞 — Snews CMS upload shellerCWE-434 9.8 Critical2026-04-04
CVE-2026-2936 WordPress plugin Visitor Traffic Real Time Statistics 跨站脚本漏洞 — Visitor Traffic Real Time StatisticsCWE-79 7.2 High2026-04-04
CVE-2026-1233 WordPress plugin Text to Speech for WP (AI Voices by Mementor) 信任管理问题漏洞 — Text to Speech – TTSWPCWE-798 7.5 High2026-04-04
CVE-2025-14938 WordPress plugin Listeo Core 代码问题漏洞 — Listeo-Core - Directory Plugin by PurethemesCWE-434 5.3 Medium2026-04-04
CVE-2026-3309 WordPress plugin Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress 代码注入漏洞 — Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePressCWE-94 6.5 Medium2026-04-04
CVE-2026-5425 WordPress plugin Widgets for Social Photo Feed 跨站脚本漏洞 — Widgets for Social Photo FeedCWE-79 7.2 High2026-04-04
CVE-2026-3571 WordPress plugin Pie Register – User Registration, Profiles & Content Restriction 安全漏洞 — Pie Register – User Registration, Profiles & Content RestrictionCWE-862 6.5 Medium2026-04-04
CVE-2026-35616 Fortinet FortiClientEms 安全漏洞 — FortiClientEMSCWE-284 9.1 Critical2026-04-04

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 20357 条 CVE 漏洞。