Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 18893

18893 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

CVE IDTitleCVSSSeverityPublished
CVE-2024-35343 多款Anpviz产品 安全漏洞 — n/a 7.5AIHighAI2024-05-28
CVE-2024-34852 F-logic DataCube3 安全漏洞 — n/a 9.8AICriticalAI2024-05-28
CVE-2024-24851 AutomationDirect P3-550E 安全漏洞 — P3-550ECWE-805 7.5 High2024-05-28
CVE-2024-24946 AutomationDirect P3-550E 缓冲区错误漏洞 — P3-550ECWE-787 8.2 High2024-05-28
CVE-2024-24947 AutomationDirect P3-550E 缓冲区错误漏洞 — P3-550ECWE-787 8.2 High2024-05-28
CVE-2024-24962 AutomationDirect P3-550E 安全漏洞 — P3-550ECWE-121 9.8 Critical2024-05-28
CVE-2024-24963 AutomationDirect P3-550E 安全漏洞 — P3-550ECWE-121 9.8 Critical2024-05-28
CVE-2024-22187 AutomationDirect P3-550E 访问控制错误漏洞 — P3-550ECWE-284 9.1 Critical2024-05-28
CVE-2024-23315 AutomationDirect P3-550E 访问控制错误漏洞 — P3-550ECWE-284 7.5 High2024-05-28
CVE-2024-29078 esMind MosP 安全漏洞 — MosP kintai kanri 5.3AIMediumAI2024-05-27
CVE-2024-35238 Denial of service of Minder Server from maliciously crafted GitHub attestations — minderCWE-770 5.3 Medium2024-05-27
CVE-2024-5035 TP-Link Archer C5400X - RFTest Unauthenticated Command Injection — Archer C4500XCWE-77 9.8AICriticalAI2024-05-27
CVE-2024-4858 Testimonial Carousel For Elementor <= 10.2.0 - Missing Authorization to Limited Setting Update — Testimonial Carousel For ElementorCWE-862 5.3 Medium2024-05-25
CVE-2024-4455 YITH WooCommerce Ajax Search <= 2.4.0 - Unauthenticated Stored Cross-Site Scripting — YITH WooCommerce Ajax SearchCWE-79 7.2 High2024-05-24
CVE-2024-4037 WP Photo Album Plus <= 8.7.02.003 - Unauthenticated Arbitrary Shortcode Execution — WP Photo Album PlusCWE-94 6.5 Medium2024-05-24
CVE-2024-0867 Email Log <= 2.4.8 - Unauthenticated Hook Injection — Email LogCWE-94 8.1 High2024-05-24
CVE-2024-4544 Pie Register - Social Sites Login (Add on) <= 1.7.7 - Authentication Bypass — Pie Register - Social Sites Login (Add on)CWE-288 9.8 Critical2024-05-24
CVE-2024-4409 WP-ViperGB <= 1.6.1 - Cross-Site Request Forgery — WP-ViperGBCWE-352 4.3 Medium2024-05-24
CVE-2024-5084 Hash Form – Drag & Drop Form Builder <= 1.1.0 - Unauthenticated Arbitrary File Upload to Remote Code Execution — Hash Form – Drag & Drop Form BuilderCWE-434 9.8 Critical2024-05-23
CVE-2024-5085 Hash Form – Drag & Drop Form Builder <= 1.1.0 - Unauthenticated PHP Object Injection — Hash Form – Drag & Drop Form BuilderCWE-502 8.1 High2024-05-23
CVE-2024-5168 Improper access control vulnerability in Prodys Quantum Audio codec — Quantum Audio codecCWE-284 9.8 Critical2024-05-23
CVE-2024-2038 Visual Website Collaboration, Feedback & Project Management – Atarim <= 3.22.6 - Hardcoded Credentials — Atarim – Visual Feedback, Review & AI CollaborationCWE-259 7.5 High2024-05-23
CVE-2024-4399 CAS <= 1.0.0 - Unauthenticated SSRF — cas 9.1AICriticalAI2024-05-23
CVE-2024-4388 CAS <= 1.0.0 - Unauthenticated Arbitrary File Access — cas 7.5AIHighAI2024-05-23
CVE-2023-6325 RomethemeForm For Elementor <= 1.1.5 - Missing Authorization via export_entries, rtformnewform, and rtformupdate — RTMForm BuilderCWE-862 5.3 Medium2024-05-23
CVE-2024-4895 wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts Plugin <= 3.4.2.12 - Unauthenticated Stored Cross-Site Scripting via CSV Import — wpDataTables – WordPress Data Table, Dynamic Tables & Table Charts PluginCWE-79 4.7 Medium2024-05-23
CVE-2024-1855 WPCafe <= 2.2.23 - Unauthenticated Blind Server-Side Request Forgery — WPCafe – Restaurant Menu, Online Food Ordering & Table Booking SystemCWE-918 5.3 Medium2024-05-23
CVE-2024-29849 Veeam Backup Enterprise Manager 安全漏洞 — Backup & Replication 9.8AICriticalAI2024-05-22
CVE-2024-20293 Cisco Firepower Threat Defense和Cisco Adaptive Security Appliance 安全漏洞 — Cisco Adaptive Security Appliance (ASA) SoftwareCWE-436 5.8 Medium2024-05-22
CVE-2024-20361 Cisco Firepower Management Center 安全漏洞 — Cisco Firepower Management CenterCWE-264 5.8 Medium2024-05-22

Vulnerabilities classified as access:pre-auth represent 18893 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.