Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 18893

18893 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

CVE IDTitleCVSSSeverityPublished
CVE-2024-4056 Denial of service condition in M-Files Server — M-Files ServerCWE-1333 7.5 High2024-04-26
CVE-2024-0905 Fancy Product Designer < 6.1.8 - Reflected Cross Site Scripting — Fancy Product Designer 6.1AIMediumAI2024-04-26
CVE-2024-0916 Unauthenticated Remote Code Execution in UvDesk Community — UvDesk CommunityCWE-434 10.0 Critical2024-04-25
CVE-2024-3733 Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders <= 5.9.15 - Information Exposure — Essential Addons for Elementor – Popular Elementor Templates & WidgetsCWE-200 5.3 Medium2024-04-25
CVE-2024-4173 SANnav versions exposes Kafka in the wan interface. — Brocade SANnavCWE-200 7.6 High2024-04-25
CVE-2024-4161 Syslog traffic sent in clear-text — Brocade SANnavCWE-319 8.6 High2024-04-25
CVE-2024-4159 Protection mechanisms — Brocade SANnavCWE-200 4.3 Medium2024-04-25
CVE-2024-29205 Ivanti Connect Secure和Ivanti Policy Secure 安全漏洞 — Connect Secure 7.5AIHighAI2024-04-24
CVE-2024-23527 Ivanti Avalanche 安全漏洞 — Avalanche 7.5AIHighAI2024-04-24
CVE-2024-20313 Cisco IOS XE Software 安全漏洞 — Cisco IOS XE SoftwareCWE-120 7.4 High2024-04-24
CVE-2024-20353 Cisco Firepower Threat Defense和Cisco Adaptive Security Appliance 安全漏洞 — Cisco Adaptive Security Appliance (ASA) SoftwareCWE-835 8.6 High2024-04-24
CVE-2024-28963 Dell ThinOS 安全漏洞 — Wyse Proprietary OS (Modern ThinOS)CWE-200 6.2 Medium2024-04-24
CVE-2024-31406 RoamWiFi R10 安全漏洞 — RoamWiFi R10 8.8 -2024-04-24
CVE-2024-32051 RoamWiFi R10 安全漏洞 — RoamWiFi R10 6.5 -2024-04-24
CVE-2024-3911 Welotec: Clickjacking Vulnerability in WebUI — SMART EMSCWE-1021 6.5 Medium2024-04-23
CVE-2024-32258 fceux 路径遍历漏洞 — n/a 9.1 -2024-04-23
CVE-2024-4040 Unauthenticated arbitrary file read and remote code execution in CrushFTP — CrushFTPCWE-1336 9.8 Critical2024-04-22
CVE-2024-1480 Unitronics Vision Standard Unauthenticated Password Retrieval — Vision230CWE-257 7.5 High2024-04-19
CVE-2024-29029 memos vulnerable to an SSRF in /o/get/image — memosCWE-918 6.1 Medium2024-04-19
CVE-2024-29028 memos vulnerable to an SSRF in /o/get/httpmeta — memosCWE-918 5.8 Medium2024-04-19
CVE-2024-29966 hard-coded credentials in the documentation that appear as the appliance root password — Brocade SANnav CWE-798 7.5 High2024-04-19
CVE-2024-29961 supply-chain attack risk — Brocade SANnavCWE-200 8.2 High2024-04-19
CVE-2024-3600 Poll Maker – Best WordPress Poll Plugin <= 5.1.8 - Missing Authorization to Unauthenticated Stored Cross-Site Scripting — Poll Maker – Versus Polls, Anonymous Polls, Image PollsCWE-862 7.2 High2024-04-19
CVE-2024-3731 Customer Reviews for WooCommerce <= 5.47.0 - Reflected Cross-Site Scripting via 's' — Customer Reviews for WooCommerceCWE-79 6.1 Medium2024-04-19
CVE-2024-3615 Media Library Folders <= 8.2.0 - Reflected Cross-Site Scripting via 's' — Media Library FoldersCWE-79 6.1 Medium2024-04-19
CVE-2024-22061 Ivanti Avalanche 安全漏洞 — Avalanche 9.8 -2024-04-19
CVE-2024-23526 Ivanti Avalanche 安全漏洞 — Avalanche 7.5 -2024-04-19
CVE-2024-23528 Ivanti Avalanche 安全漏洞 — Avalanche 7.5 -2024-04-19
CVE-2024-23529 Ivanti Avalanche 安全漏洞 — Avalanche 7.5 -2024-04-19
CVE-2024-23530 Ivanti Avalanche 安全漏洞 — Avalanche 7.5 -2024-04-19

Vulnerabilities classified as access:pre-auth represent 18893 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.