access:pre-auth — CVE vulnerabilities tagged 18852

18852 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2025-53031	Oracle Financial Services Applications 安全漏洞 — Oracle Financial Services Analytical Applications Infrastructure	5.3	Medium	2025-07-15
CVE-2025-50106	Oracle Java SE 安全漏洞 — Oracle Java SE	8.1	High	2025-07-15
CVE-2025-50107	Oracle E-Business Suite 访问控制错误漏洞 — Oracle Universal Work Queue	6.1	Medium	2025-07-15
CVE-2025-50072	Oracle Fusion Middleware 访问控制错误漏洞 — Oracle WebLogic Server	4.0	Medium	2025-07-15
CVE-2025-50073	Oracle Fusion Middleware 授权问题漏洞 — Oracle WebLogic Server	6.1	Medium	2025-07-15
CVE-2025-50065	Oracle Java SE 安全漏洞 — Oracle GraalVM for JDK	3.7	Low	2025-07-15
CVE-2025-50059	Oracle Java SE 访问控制错误漏洞 — Oracle Java SE	8.6	High	2025-07-15
CVE-2025-30762	Oracle Fusion Middleware 访问控制错误漏洞 — Oracle WebLogic Server	7.5	High	2025-07-15
CVE-2025-30758	Oracle Siebel CRM 信息泄露漏洞 — Siebel CRM End User	5.3	Medium	2025-07-15
CVE-2025-30759	Oracle Analytics 访问控制错误漏洞 — Oracle Business Intelligence Enterprise Edition	6.1	Medium	2025-07-15
CVE-2025-30754	Oracle Java SE 访问控制错误漏洞 — Oracle Java SE	4.8	Medium	2025-07-15
CVE-2025-30756	Oracle REST Data Services 跨站请求伪造漏洞 — Oracle REST Data Services	6.1	Medium	2025-07-15
CVE-2025-30752	Oracle Java SE 资源管理错误漏洞 — Oracle Java SE	3.7	Low	2025-07-15
CVE-2025-30749	Oracle Java SE 安全漏洞 — Oracle Java SE	8.1	High	2025-07-15
CVE-2025-30747	Oracle PeopleSoft 安全漏洞 — PeopleSoft Enterprise PeopleTools	4.3	Medium	2025-07-15
CVE-2025-30748	Oracle PeopleSoft 安全漏洞 — PeopleSoft Enterprise PeopleTools	6.1	Medium	2025-07-15
CVE-2025-30745	Oracle E-Business Suite 跨站请求伪造漏洞 — Oracle MES for Process Manufacturing	6.1	Medium	2025-07-15
CVE-2025-30746	Oracle E-Business Suite 安全漏洞 — Oracle iStore	6.1	Medium	2025-07-15
CVE-2025-34103	WePresent WiPG-1000 Unauthenticated Command Injection in via rdfs.cgi — WiPG-1000CWE-78	9.8^AI	Critical^AI	2025-07-15
CVE-2025-34111	Tiki Wiki <= 15.1 ELFinder Unauthenticated File Upload RCE — Wiki CMS GroupwareCWE-434	9.8^AI	Critical^AI	2025-07-15
CVE-2025-34068	Samsung WLAN AP WEA453e < 5.2.4.T1 Unauthenticated RCE via command1 and command2 Parameters — WLAN AP WEA453eCWE-306	9.8^AI	Critical^AI	2025-07-15
CVE-2025-34105	DiskBoss Enterprise Stack-Based Buffer Overflow RCE — DiskBoss EnterpriseCWE-20	9.8^AI	Critical^AI	2025-07-15
CVE-2025-34110	ColoradoFTP Server <= 1.3 Build 8 Path Traversal Information Disclosure — ServerCWE-22	9.1^AI	Critical^AI	2025-07-15
CVE-2025-7667	Restrict File Access <= 1.1.2 - Cross-Site Request Forgery to Arbitrary File Deletion — Restrict File AccessCWE-352	8.1	High	2025-07-15
CVE-2025-7340	HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder. <= 2.2.1 - Unauthenticated Arbitrary File Upload — HT Contact Form – Drag & Drop Form Builder for WordPressCWE-434	9.8	Critical	2025-07-15
CVE-2025-7360	HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder. <= 2.2.1 - Directory Traversal to Arbitrary File Move — HT Contact Form – Drag & Drop Form Builder for WordPressCWE-22	9.1	Critical	2025-07-15
CVE-2025-7341	HT Contact Form Widget For Elementor Page Builder & Gutenberg Blocks & Form Builder. <= 2.2.1 - Unauthenticated Arbitrary File Deletion — HT Contact Form – Drag & Drop Form Builder for WordPressCWE-269	9.1	Critical	2025-07-15
CVE-2025-5393	Alone – Charity Multipurpose Non-profit WordPress Theme <= 7.8.5 - Missing Authorization to Unauthenticated Arbitrary File Deletion — Alone – Charity Multipurpose Non-profit WordPress ThemeCWE-73	9.1	Critical	2025-07-15
CVE-2025-5394	Alone – Charity Multipurpose Non-profit WordPress Theme <= 7.8.3 - Missing Authorization to Unauthenticated Arbitrary File Upload via Plugin Installation — Alone – Charity Multipurpose Non-profit WordPress ThemeCWE-862	9.8	Critical	2025-07-15
CVE-2025-52376	Nexxt Solutions NCM-X1800 安全漏洞 — n/a	9.8	-	2025-07-15

Vulnerabilities classified as access:pre-auth represent 18852 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

access:pre-auth — CVE vulnerabilities tagged 18852