Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 18853

18853 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

CVE IDTitleCVSSSeverityPublished
CVE-2025-3811 WPBookit <= 1.0.2 - Insecure Direct Object Reference to Unauthenticated Privilege Escalation via Email Update — WPBookitCWE-639 9.8 Critical2025-05-09
CVE-2025-46191 SourceCodester Client Database Management System 安全漏洞 — n/a 9.8AICriticalAI2025-05-09
CVE-2025-28202 Victure RX1800 安全漏洞 — n/a 9.1AICriticalAI2025-05-09
CVE-2025-30101 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFSCWE-367 4.4 Medium2025-05-08
CVE-2024-6648 Path Traversal in AP Page Builder — AP Page BuilderCWE-22 7.5AIHighAI2025-05-08
CVE-2025-3506 Potentially senitive path exposed via unauthenticated http route — CheckmkCWE-497 7.5AIHighAI2025-05-08
CVE-2025-2806 tagDiv Composer <= 5.3 - Reflected Cross-Site Scripting via 'data' — tagDiv ComposerCWE-79 6.1 Medium2025-05-08
CVE-2025-3759 Missing Authentication for Changing Device Configuration in WF2220 — WF2220CWE-306 9.8AICriticalAI2025-05-08
CVE-2025-3419 Event Manager, Events Calendar, Tickets, Registrations – Eventin <= 4.0.26 - Unauthenticated Arbitrary File Read — Eventin – Event Calendar, Event Registration, Tickets & Booking (AI Powered)CWE-73 7.5 High2025-05-08
CVE-2024-13793 Wolmart | Multi-Vendor Marketplace WooCommerce Theme <= 1.8.11 - Unauthenticated Arbitrary Shortcode Execution in wolmart_loadmore — Wolmart | Multi-Vendor Marketplace WooCommerce ThemeCWE-94 7.3 High2025-05-08
CVE-2025-32441 Rack session gets restored after deletion — rackCWE-362 4.2 Medium2025-05-07
CVE-2025-35939 Craft CMS stores user-provided content in session files — CMSCWE-472 5.3 Medium2025-05-07
CVE-2025-20195 Cisco IOS XE 跨站请求伪造漏洞 — Cisco IOS XE SoftwareCWE-352 4.3 Medium2025-05-07
CVE-2025-20221 Cisco IOS XE SD-WAN Software 信息泄露漏洞 — Cisco IOS XE SoftwareCWE-200 5.3 Medium2025-05-07
CVE-2025-20162 Cisco IOS XE 资源管理错误漏洞 — Cisco IOS XE SoftwareCWE-400 8.6 High2025-05-07
CVE-2025-20196 Cisco IOS和Cisco IOS XE 安全漏洞 — IOSCWE-307 5.3 Medium2025-05-07
CVE-2025-20140 Cisco IOS XE 安全漏洞 — Cisco IOS XE SoftwareCWE-789 7.4 High2025-05-07
CVE-2025-20189 Cisco IOS XE 安全漏洞 — Cisco IOS XE SoftwareCWE-762 7.4 High2025-05-07
CVE-2025-20181 Cisco IOS 数据伪造问题漏洞 — IOSCWE-347 6.8AIMediumAI2025-05-07
CVE-2025-20202 Cisco IOS XE Wireless Controller Software 安全漏洞 — Cisco IOS XE SoftwareCWE-805 7.4 High2025-05-07
CVE-2025-46828 Unauthenticated SQL Injection on get_socios.php endpoint — WeGIACWE-89 9.8AICriticalAI2025-05-07
CVE-2025-20188 Cisco IOS XE 信任管理问题漏洞 — Cisco IOS XE SoftwareCWE-798 10.0 Critical2025-05-07
CVE-2025-20137 Cisco IOS 访问控制错误漏洞 — IOSCWE-284 4.7 Medium2025-05-07
CVE-2025-20216 Cisco Catalyst SD-WAN Manager Reflected HTML Injection Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-74 4.7 Medium2025-05-07
CVE-2025-20154 Cisco IOS, IOS XE and IOS XR Software TWAMP Denial of Service Vulnerability — Cisco IOS XR SoftwareCWE-20 8.6 High2025-05-07
CVE-2025-20191 Multiple Cisco Products Denial of Service Vulnerability — Cisco NX-OS SoftwareCWE-805 7.4 High2025-05-07
CVE-2025-20182 Cisco Adaptive Security Appliance Software, Firepower Threat Defense Software and IOS XE Software IKEv2 Denial of Service Vulnerability — Cisco Adaptive Security Appliance (ASA) SoftwareCWE-787 8.6 High2025-05-07
CVE-2025-20157 Cisco Catalyst vManage Certificate Validation Vulnerability — Cisco Catalyst SD-WAN ManagerCWE-295 5.9 Medium2025-05-07
CVE-2025-20210 Cisco Catalyst Center Unprotected API Endpoint — Cisco Digital Network Architecture Center (DNA Center)CWE-306 7.3 High2025-05-07
CVE-2025-2777 SysAid On-Prem <= 23.3.40 lshw Proceessing XML External Entity Injection — SysAid On-PremCWE-611 9.3 Critical2025-05-07

Vulnerabilities classified as access:pre-auth represent 18853 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.