Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 18942

18942 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

CVE IDTitleCVSSSeverityPublished
CVE-2024-23604 FitNesse 跨站脚本漏洞 — FitNesse 6.1 -2024-03-18
CVE-2024-25656 AVSystem Unified Management Platform 安全漏洞 — n/a 7.5 -2024-03-18
CVE-2024-1857 Ultimate Gift Cards for WooCommerce – Create, Redeem & Manage Digital Gift Certificates with Personalized Templates <= 2.6.6 - Missing Authorization to Unauthenticated Information Exposure — Ultimate Gift Cards for WooCommerceCWE-862 5.3 Medium2024-03-16
CVE-2024-1733 Word Replacer Pro <= 1.0 - Missing Authorization to Unauthenticated Arbitrary Content Update — Word Replacer ProCWE-862 5.3 Medium2024-03-16
CVE-2024-28069 Mitel MiContact Center Business 安全漏洞 — n/a 9.1 -2024-03-16
CVE-2024-28070 Mitel MiContact Center Business 安全漏洞 — n/a 6.1 -2024-03-16
CVE-2024-2193 Speculative Race Condition impacts modern CPU architectures that support speculative execution, also known as GhostRace. — CPU 5.9 -2024-03-15
CVE-2024-1917 Mitsubishi Electric MELSEC-Q和MELSEC-L 输入验证错误漏洞 — MELSEC-Q Series Q03UDECPUCWE-190 9.8 Critical2024-03-15
CVE-2024-1916 Mitsubishi Electric MELSEC-Q和MELSEC-L 输入验证错误漏洞 — MELSEC-Q Series Q03UDECPUCWE-190 9.8 Critical2024-03-15
CVE-2024-1915 Mitsubishi Electric MELSEC-Q和MELSEC-L 安全漏洞 — MELSEC-Q Series Q03UDECPUCWE-468 9.8 Critical2024-03-15
CVE-2024-0803 Mitsubishi Electric MELSEC-Q和MELSEC-L 输入验证错误漏洞 — MELSEC-Q Series Q03UDECPUCWE-190 9.8 Critical2024-03-14
CVE-2024-0802 Mitsubishi Electric MELSEC-Q和MELSEC-L 安全漏洞 — MELSEC-Q Series Q03UDECPUCWE-468 9.8 Critical2024-03-14
CVE-2023-39368 Intel Processors 安全漏洞 — Intel(R) Processors 6.5 Medium2024-03-14
CVE-2024-2242 Contact Form 7 <= 5.9 - Reflected Cross-Site Scripting — Contact Form 7CWE-79 6.1 Medium2024-03-13
CVE-2023-38534 OpenText Exceed Turbo X 安全漏洞 — Exceed Turbo XCWE-287 8.6 High2024-03-13
CVE-2024-20319 Cisco IOS XR 安全漏洞 — Cisco IOS XR SoftwareCWE-284 4.3 Medium2024-03-13
CVE-2024-20318 Cisco IOS XR 安全漏洞 — Cisco IOS XR SoftwareCWE-20 7.4 High2024-03-13
CVE-2024-20315 Cisco IOS XR 安全漏洞 — Cisco IOS XR SoftwareCWE-284 5.8 Medium2024-03-13
CVE-2024-20322 Cisco IOS XR 安全漏洞 — Cisco IOS XR SoftwareCWE-284 5.8 Medium2024-03-13
CVE-2024-20266 Cisco IOS XR Software 安全漏洞 — Cisco IOS XR SoftwareCWE-476 5.3 Medium2024-03-13
CVE-2024-20327 Cisco ASR 9000 安全漏洞 — Cisco IOS XR SoftwareCWE-20 7.4 High2024-03-13
CVE-2024-0687 Restrict User Access – Ultimate Membership & Content Protection <= 2.5 - Information Exposure — Restrict User Access – Ultimate Membership & Content ProtectionCWE-284 5.3 Medium2024-03-13
CVE-2024-0368 Hustle <= 7.8.3 - Sensitive Information Exposure via Exposed Hubspot API Keys — Hustle – Email Marketing, Lead Generation, Optins, PopupsCWE-522 8.6 High2024-03-13
CVE-2024-1489 SMS Alert Order Notifications – WooCommerce <= 3.6.9 - Cross-Site Request Forgery — SMS Alert – SMS & OTP for WooCommerce, Order Notifications & Abandoned Cart RecoveryCWE-352 4.3 Medium2024-03-13
CVE-2024-2194 WP Statistics <= 14.5 - Unauthenticated Stored Cross-Site Scripting — WP Statistics – Simple, privacy-friendly Google Analytics alternativeCWE-79 7.2 High2024-03-13
CVE-2024-1038 Beaver Builder – WordPress Page Builder <= 2.7.4.2 - Reflected (DOM-Based) Cross-Site Scripting — Beaver Builder Page Builder – Drag and Drop Website BuilderCWE-79 5.4 Medium2024-03-13
CVE-2024-0827 Play.ht – Make Your Blog Posts Accessible With Text to Speech Audio <= 3.6.4 - Cross-Site Request Forgery — Play.ht – Make Your Blog Posts Accessible With Text to Speech AudioCWE-352 4.3 Medium2024-03-13
CVE-2024-0377 LifterLMS – WordPress LMS Plugin for eLearning <= 7.5.1 - Missing Authorization via process_review — LifterLMS – WP LMS for eLearning, Online Courses, & QuizzesCWE-284 5.3 Medium2024-03-13
CVE-2024-0683 Bulgarisation for WooCommerce <= 3.0.14 - Missing Authorization — Bulgarisation for WooCommerceCWE-862 7.3 High2024-03-13
CVE-2024-1365 YML for Yandex Market <= 4.2.3 - Reflected Cross-Site Scripting — YML for Yandex MarketCWE-79 6.1 Medium2024-03-13

Vulnerabilities classified as access:pre-auth represent 18942 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.