access:pre-auth — CVE vulnerabilities tagged 18843

18843 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-58259	Rancher affected by unauthenticated Denial of Service — rancherCWE-770	8.2	High	2025-09-02
CVE-2025-52551	Proprietary protocol allows for unauthenticated file operations — E2 Facility Management SystemCWE-306	9.8^AI	Critical^AI	2025-09-02
CVE-2025-52546	Stored XSS by uploading a specially crafted floor plan file — E3 Supervisory ControlCWE-434	6.1^AI	Medium^AI	2025-09-02
CVE-2025-52544	Arbitrary read file from the filesystem — E3 Supervisory ControlCWE-20	7.5^AI	High^AI	2025-09-02
CVE-2025-41031	Multiple vulnerabilities in Deporsite by T-INNOVA — DeporsiteCWE-863	5.3^AI	Medium^AI	2025-09-02
CVE-2025-41030	Multiple vulnerabilities in Deporsite by T-INNOVA — DeporsiteCWE-863	5.3^AI	Medium^AI	2025-09-02
CVE-2024-28988	SolarWinds Web Help Desk Java Deserialization Remote Code Execution Vulnerability — Web Help DeskCWE-502	9.8	Critical	2025-09-01
CVE-2025-0656	IBM Concert Software cross-site scripting — Concert SoftwareCWE-79	6.1	Medium	2025-09-01
CVE-2025-54857	Seikou202fSolutions SkyBridge BASIC MB-A130 操作系统命令注入漏洞 — SkyBridge BASIC MB-A130CWE-78	9.8	-	2025-09-01
CVE-2025-7731	Information Disclosure Vulnerability in MELSEC iQ-F Series CPU module — MELSEC iQ-F Series FX5U-32MT/ESCWE-319	7.5	High	2025-09-01
CVE-2025-7405	Information Disclosure, Information Tampering, and Denial of Service (DoS) Vulnerability in MELSEC iQ-F Series CPU module — MELSEC iQ-F Series FX5U-32MT/ESCWE-306	7.3	High	2025-09-01
CVE-2025-9569	Sunnet｜eHRD CTMS - Reflected Cross-site Scripting — eHRD CTMSCWE-79	6.1	Medium	2025-09-01
CVE-2025-9568	Sunnet｜eHRD CTMS - Reflected Cross-site Scripting — eHRD CTMSCWE-79	6.1	Medium	2025-09-01
CVE-2025-9567	Sunnet｜eHRD CTMS - Reflected Cross-site Scripting — eHRD CTMSCWE-79	6.1	Medium	2025-09-01
CVE-2025-9699	SourceCodester Online Polling System Code checklogin.php sql injection — Online Polling System CodeCWE-89	7.3	High	2025-08-30
CVE-2011-10032	Sunway Forcecontrol SNMP NetDBServer.exe Opcode 0x57 — ForceControlCWE-121	9.8	-	2025-08-30
CVE-2009-20010	Dogfood CRM spell.php RCE — Dogfood CRMCWE-78	9.8	-	2025-08-30
CVE-2009-20011	ContentKeeper Web Appliance < 125.10 RCE via mimencode — ContentKeeper Web ApplianceCWE-434	9.8	-	2025-08-30
CVE-2025-9618	Related Posts Lite <= 1.12 - Cross-Site Request Forgery — Related Posts LiteCWE-352	4.3	Medium	2025-08-30
CVE-2025-34165	NetSupport Manager < 14.12.0000 Stack-Based Buffer Overflow — NetSupport ManagerCWE-121	8.2	-	2025-08-29
CVE-2025-34164	NetSupport Manager < 14.12.0000 Heap-Based Buffer Overflow — NetSupport ManagerCWE-122	9.8	-	2025-08-29
CVE-2024-13342	Booster for WooCommerce <= 7.2.4 - Unauthenticated Double Extension Arbitrary File Upload — Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ ToolsCWE-434	8.1	High	2025-08-29
CVE-2025-9374	Ultimate Tag Warrior Importer <= 0.2 - Cross-Site Request Forgery — Ultimate Tag Warrior ImporterCWE-352	4.3	Medium	2025-08-29
CVE-2025-9639	Ai3｜QbiCRMGateway - Arbitrary File Reading through Path Traversal — QbiCRMGatewayCWE-23	7.5	High	2025-08-29
CVE-2025-8858	Changing｜Clinic Image System - SQL Injection — Clinic Image SystemCWE-89	7.5	High	2025-08-29
CVE-2025-8857	Changing｜Clinic Image System - Use of Hard-coded Credentials — Clinic Image SystemCWE-798	9.8	Critical	2025-08-29
CVE-2025-8861	Changing｜TSA - Missing Authentication — TSACWE-306	9.8	Critical	2025-08-29
CVE-2025-39247	Hikvision HikCentral Professional 安全漏洞 — HikCentral Professional	8.6	High	2025-08-29
CVE-2025-9596	itsourcecode Sports Management System login.php sql injection — Sports Management SystemCWE-89	7.3	High	2025-08-28
CVE-2025-9592	itsourcecode Apartment Management System bill_info.php sql injection — Apartment Management SystemCWE-89	7.3	High	2025-08-28

Vulnerabilities classified as access:pre-auth represent 18843 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

access:pre-auth — CVE vulnerabilities tagged 18843