CWE-639 通过用户控制密钥绕过授权机制 类弱点 1039 条 CVE 漏洞汇总,含 AI 中文分析。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2024-8290 | WordPress plugin WCFM 安全漏洞 — WCFM – Frontend Manager for WooCommerce | 8.8 | High | 2024-09-25 |
| CVE-2024-8485 | WordPress plugin REST API TO MiniProgram 安全漏洞 — REST API TO MiniProgram | 9.8 | Critical | 2024-09-25 |
| CVE-2024-8791 | WordPress plugin Donation Forms by Charitable 安全漏洞 — Charitable – Donation Plugin for WordPress – Fundraising with Recurring Donations & More | 9.8 | Critical | 2024-09-24 |
| CVE-2024-45806 | Envoy 安全漏洞 — envoy | 6.5 | Medium | 2024-09-19 |
| CVE-2024-45614 | Puma 安全漏洞 — puma | 5.4 | Medium | 2024-09-19 |
| CVE-2024-46982 | Next.js 安全漏洞 — next.js | 7.5 | High | 2024-09-17 |
| CVE-2024-45605 | Sentry 安全漏洞 — sentry | 6.5 | Medium | 2024-09-17 |
| CVE-2024-45606 | Sentry 安全漏洞 — sentry | 7.1 | High | 2024-09-17 |
| CVE-2024-6685 | GitLab Enterprise Edition、GitLab Community Edition 安全漏洞 — GitLab | 3.1 | Low | 2024-09-16 |
| CVE-2022-3459 | WordPress plugin WooCommerce Multiple Free Gift 安全漏洞 — WooCommerce Multiple Free Gift | 5.3 | Medium | 2024-09-14 |
| CVE-2024-6087 | Lunary 访问控制错误漏洞 — lunary-ai/lunary | 8.8AI | HighAI | 2024-09-13 |
| CVE-2024-3306 | Utarit SoliClub 安全漏洞 — SoliClub | 9.1AI | CriticalAI | 2024-09-12 |
| CVE-2024-3305 | Utarit SoliClub 信息泄露漏洞 — SoliClub | 7.5AI | HighAI | 2024-09-12 |
| CVE-2024-45786 | Reedos aiM-Star 安全漏洞 — Mutual Fund Distribution Product (aiM-Star) | 6.5AI | MediumAI | 2024-09-11 |
| CVE-2023-44254 | Fortinet FortiAnalyzer和FortiManager 安全漏洞 — FortiAnalyzer | 4.7 | Medium | 2024-09-10 |
| CVE-2024-45032 | Siemens Industrial Edge Management 安全漏洞 — Industrial Edge Management Pro | 10.0 | Critical | 2024-09-10 |
| CVE-2024-8601 | TechExcel Back Office Software 安全漏洞 — Back Office Software | 6.5AI | MediumAI | 2024-09-09 |
| CVE-2024-8428 | WordPress plugin ForumWP 安全漏洞 — ForumWP – Forum & Discussion Board | 8.8 | High | 2024-09-06 |
| CVE-2024-1744 | Ariva Computer Accord ORS 信息泄露漏洞 — Accord ORS | 7.5 | - | 2024-09-06 |
| CVE-2024-8292 | WordPress plugin WP-Recall 安全漏洞 — WP-Recall – Registration, Profile, Commerce & More | 9.8 | Critical | 2024-09-06 |
| CVE-2024-8123 | WordPress plugin WP Extended 安全漏洞 — The Ultimate WordPress Toolkit – WP Extended | 5.4 | Medium | 2024-09-04 |
| CVE-2024-43916 | WordPress plugin Zephyr Project Manager 安全漏洞 — Zephyr Project Manager | 4.3 | Medium | 2024-08-26 |
| CVE-2024-8158 | lib9p 安全漏洞 — 9front | 6.8AI | MediumAI | 2024-08-25 |
| CVE-2024-7848 | WordPress plugin User Private Files 安全漏洞 — File Sharing & Download Manager – User Private Files | 4.3 | Medium | 2024-08-22 |
| CVE-2024-43239 | WordPress plugin Masteriyo - LMS 安全漏洞 — Masteriyo - LMS | 4.3 | Medium | 2024-08-18 |
| CVE-2024-43266 | WordPress plugin WP Job Portal 安全漏洞 — WP Job Portal | 5.4 | Medium | 2024-08-18 |
| CVE-2024-43288 | WordPress plugin wpForo Forum 安全漏洞 — wpForo Forum | 4.3 | Medium | 2024-08-18 |
| CVE-2024-43315 | WordPress plugin Stripe Payments For WooCommerce by Checkout 安全漏洞 — Stripe Payments For WooCommerce by Checkout | 7.5 | High | 2024-08-18 |
| CVE-2024-43322 | WordPress plugin Zephyr Project Manager 安全漏洞 — Zephyr Project Manager | 5.4 | Medium | 2024-08-18 |
| CVE-2024-43350 | WordPress plugin Propovoice CRM 安全漏洞 — Propovoice CRM | 5.3 | Medium | 2024-08-18 |
CWE-639(通过用户控制密钥绕过授权机制) 是常见的弱点类别,本平台收录该类弱点关联的 1039 条 CVE 漏洞。