Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 18851

18851 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

CVE IDTitleCVSSSeverityPublished
CVE-2014-125123 Kloxo < 6.1.12 Unauthenticated SQL Injection RCE — KloxoCWE-89 9.8AICriticalAI2025-07-31
CVE-2013-10033 Kimai 0.9.2 db_restore.php SQL Injection — KimaiCWE-89 9.8AICriticalAI2025-07-31
CVE-2013-10034 Kaseya < 6.3.0.2 uploadImage.asp Arbitrary File Upload RCE — KServerCWE-434 9.8AICriticalAI2025-07-31
CVE-2013-10038 FlashChat Arbitrary File Upload RCE — FlashChatCWE-434 9.8AICriticalAI2025-07-31
CVE-2012-10021 D-Link DIR-605L Captcha Handling Buffer Overflow — DIR-605LCWE-121 9.8AICriticalAI2025-07-31
CVE-2013-10040 ClipBucket <= 2.6 ofc_upload_image.php Arbitrary File Upload RCE — ClipBucketCWE-434 9.8AICriticalAI2025-07-31
CVE-2014-125125 A10 Networks AX Loadbalancer Path Traversal — AX Series LoadbalancerCWE-22 9.1AICriticalAI2025-07-31
CVE-2025-54589 copyparty Reflected XSS via Filter Parameter — copypartyCWE-79 6.3 Medium2025-07-31
CVE-2025-2813 HTTP Service DoS Vulnerability — AXL F BK PN TPSCWE-770 7.5 High2025-07-31
CVE-2025-5720 Customer Reviews for WooCommerce <= 5.80.2 - Unauthenticated Stored Cross-Site Scripting via `author` Parameter — Customer Reviews for WooCommerceCWE-79 6.4 Medium2025-07-31
CVE-2025-50475 Russound MBX-PRE-D67F 安全漏洞 — n/a 9.8AICriticalAI2025-07-31
CVE-2025-51569 LB-Link BL-CPE300M 安全漏洞 — n/a 6.1AIMediumAI2025-07-31
CVE-2025-26062 Intelbras RX1500和Intelbras RX3000 安全漏洞 — n/a 7.5AIHighAI2025-07-31
CVE-2025-26063 Intelbras RX1500和Intelbras RX3000 安全漏洞 — n/a 9.8AICriticalAI2025-07-31
CVE-2023-2593 Kernel: ksmbd memory exhaustion denial-of-service vulnerability CWE-835 5.9 Medium2025-07-30
CVE-2025-52897 GLPI is vulnerable to XSS and open redirection attacks through planning feature — glpiCWE-80 6.5 Medium2025-07-30
CVE-2025-8323 Ventem|e-School - Arbitrary File Upload — e-SchoolCWE-434 8.8 High2025-07-30
CVE-2025-50578 Heimdall 安全漏洞 — n/a 6.1AIMediumAI2025-07-30
CVE-2025-54381 BentoML is Vulnerable to an SSRF Attack Through File Upload Processing — BentoMLCWE-918 9.9 Critical2025-07-29
CVE-2025-40600 SonicWALL SonicOS SSLVPN 格式化字符串错误漏洞 — SonicOSCWE-134 7.5AIHighAI2025-07-29
CVE-2025-36010 IBM Db2 for Linux denial of service — Db2CWE-833 6.5 Medium2025-07-29
CVE-2025-53077 SAMSUNG DMS 安全漏洞 — DMS(Data Management Server)CWE-698 6.5 Medium2025-07-29
CVE-2025-4370 Brizy <= 2.6.20 - Missing Authorization to Unauthenticated Limited File Upload — Brizy – Page BuilderCWE-862 5.3 Medium2025-07-29
CVE-2025-6495 Bricks Builder <= 1.12.4 - Unauthenticated SQL Injection via `p` Parameter — BricksCWE-89 7.5 High2025-07-29
CVE-2025-44136 TileServer PHP 安全漏洞 — n/a 6.1AIMediumAI2025-07-29
CVE-2025-52284 TOTOLINK X6000R 安全漏洞 — n/a 9.8AICriticalAI2025-07-29
CVE-2025-54423 copyparty has a DOM-Based XSS vulnerability when displaying multimedia metadata — copypartyCWE-79 5.4 Medium2025-07-28
CVE-2025-24485 MedDream PACS Premium 代码问题漏洞 — MedDream PACS PremiumCWE-918 5.8 Medium2025-07-28
CVE-2025-8253 code-projects Exam Form Submission delete_s6.php sql injection — Exam Form SubmissionCWE-89 7.3 High2025-07-28
CVE-2025-8104 Memory Usage <= 3.98 - Cross-Site Request Forgery to Limited Plugin Installation via wpmemory_install_plugin Function — Memory Usage, Memory Limit, PHP and Server Memory Health Check and Provide SuggestionsCWE-352 4.3 Medium2025-07-27

Vulnerabilities classified as access:pre-auth represent 18851 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.