access:pre-auth — CVE vulnerabilities tagged 18854

18854 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

CVE ID	Title	CVSS	Severity	Published
CVE-2024-50565	Fortinet多款产品安全漏洞 — FortiOSCWE-300	3.0	Low	2025-04-08
CVE-2024-26013	Fortinet多款产品安全漏洞 — FortiProxyCWE-923	7.1	High	2025-04-08
CVE-2024-52962	Fortinet FortiAnalyzer 安全漏洞 — FortiAnalyzerCWE-117	5.0	Medium	2025-04-08
CVE-2025-2876	MelaPress Login Security and MelaPress Login Security Premium 2.1.0 - Missing Authorization to Unauthenticated Arbitrary User Deletion — MelaPress Login Security PremiumCWE-862	5.3	Medium	2025-04-08
CVE-2025-2568	Vayu Blocks – Gutenberg Blocks for WordPress & WooCommerce 1.0.4 - 1.2.1 - Missing Authorization to Unauthenticated Limited Arbitrary Options Update — Vayu Blocks – Gutenberg Blocks for WordPress & WooCommerceCWE-862	5.3	Medium	2025-04-08
CVE-2025-29985	Dell Common Event Enabler 安全漏洞 — Common Event EnablerCWE-1188	6.5	Medium	2025-04-08
CVE-2025-29986	Dell Common Event Enabler 安全漏洞 — Common Event EnablerCWE-923	8.3	High	2025-04-08
CVE-2025-2883	Accept SagePay Payments Using Contact Form 7 <= 2.0 - Unauthenticated Information Exposure — Accept SagePay Payments Using Contact Form 7CWE-200	5.3	Medium	2025-04-08
CVE-2025-30280	Siemens Mendix Runtime 安全漏洞 — Mendix Runtime V10CWE-204	5.3	Medium	2025-04-08
CVE-2024-54092	Siemens Industrial Edge Devices 安全漏洞 — Industrial Edge Device Kit - arm64 V1.17CWE-1390	9.8	Critical	2025-04-08
CVE-2024-41796	Siemens SENTRON 7KT PAC1260 Data Manager 安全漏洞 — SENTRON 7KT PAC1260 Data ManagerCWE-620	6.5	Medium	2025-04-08
CVE-2024-41795	Siemens SENTRON 7KT PAC1260 Data Manager 跨站请求伪造漏洞 — SENTRON 7KT PAC1260 Data ManagerCWE-352	6.5	Medium	2025-04-08
CVE-2024-41794	Siemens SENTRON 7KT PAC1260 Data Manager 信任管理问题漏洞 — SENTRON 7KT PAC1260 Data ManagerCWE-798	10.0	Critical	2025-04-08
CVE-2024-41793	Siemens SENTRON 7KT PAC1260 Data Manager 访问控制错误漏洞 — SENTRON 7KT PAC1260 Data ManagerCWE-306	8.6	High	2025-04-08
CVE-2025-3064	WPFront User Role Editor <= 4.2.1 - Cross-Site Request Forgery to Privilege Escalation via whitelist_options Function — WPFront User Role EditorCWE-352	8.8	High	2025-04-08
CVE-2024-41792	Siemens SENTRON 7KT PAC1260 Data Manager 路径遍历漏洞 — SENTRON 7KT PAC1260 Data ManagerCWE-22	8.6	High	2025-04-08
CVE-2025-3433	Advanced Advertising System <= 1.3.1 - Open Redirect — Advanced Advertising SystemCWE-601	6.1	Medium	2025-04-08
CVE-2024-41791	Siemens SENTRON 7KT PAC1260 Data Manager 访问控制错误漏洞 — SENTRON 7KT PAC1260 Data ManagerCWE-306	7.3	High	2025-04-08
CVE-2025-2882	GreenPay(tm) by Green.Money 3.0.0 - 3.0.9 - Unauthenticated Information Exposure — GreenPay(tm) by Green.MoneyCWE-200	5.3	Medium	2025-04-08
CVE-2025-3431	ZoomSounds - WordPress Wave Audio Player with Playlist <= 6.91 - Unauthenticated Arbitrary File Download — ZoomSounds - WordPress Wave Audio Player with PlaylistCWE-73	7.5	High	2025-04-08
CVE-2025-30016	Authentication Bypass Vulnerability in SAP Financial Consolidation — SAP Financial ConsolidationCWE-921	9.8	Critical	2025-04-08
CVE-2025-27435	Information Disclosure Vulnerability in SAP Commerce Cloud — SAP Commerce CloudCWE-862	4.2	Medium	2025-04-08
CVE-2025-26657	Information Disclosure vulnerability in SAP KMC WPC — SAP KMC WPCCWE-862	5.3	Medium	2025-04-08
CVE-2025-3428	3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'coating_text' — 3DPrint LiteCWE-89	4.9	Medium	2025-04-08
CVE-2025-3429	3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'material_text' — 3DPrint LiteCWE-89	4.9	Medium	2025-04-08
CVE-2025-3430	3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'printer_text' — 3DPrint LiteCWE-89	4.9	Medium	2025-04-08
CVE-2025-3427	3DPrint Lite <=2.1.3.6 - Authenticated (Admin+) SQL Injection via 'infill_text' — 3DPrint LiteCWE-89	4.9	Medium	2025-04-08
CVE-2025-0361	AXIS OS 安全漏洞 — AXIS OSCWE-203	4.3	Medium	2025-04-08
CVE-2025-2004	Simple WP Events <= 1.8.17 - Unauthenticated Arbitrary File Deletion — Simple WP EventsCWE-73	9.1	Critical	2025-04-08
CVE-2024-13820	Melhor Envio <= 2.15.11 - Unauthenticated Sensitive Information Exposure via Hardcoded Hash — Melhor EnvioCWE-200	5.3	Medium	2025-04-08

Vulnerabilities classified as access:pre-auth represent 18854 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.

Goal Reached Thanks to every supporter — we hit 100%!

access:pre-auth — CVE vulnerabilities tagged 18854