Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 18960

18960 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

CVE IDTitleCVSSSeverityPublished
CVE-2023-5877 affiliate-toolkit < 3.4.3 - Unauthenticated SSRF — affiliate-toolkit 9.1 -2024-01-01
CVE-2023-52286 Tencent TDSQL 安全漏洞 — n/a 9.8 -2023-12-31
CVE-2023-51665 Audiobookshelf vulnerable to Blind SSRF in `Auth.js` — audiobookshelfCWE-918 4.3 Medium2023-12-27
CVE-2023-51697 Audiobookshelf vulnerable to Blind SSRF in `podcastUtils.js` — audiobookshelfCWE-918 4.3 Medium2023-12-27
CVE-2023-5991 Hotel Booking Lite < 4.8.5 - Unauthenticated Arbitrary File Download & Deletion — Hotel Booking Lite 9.8AICriticalAI2023-12-26
CVE-2023-6114 Duplicator < 1.5.7.1; Duplicator Pro < 4.5.14.2 - Unauthenticated Sensitive Data Exposure — Duplicator 7.5AIHighAI2023-12-26
CVE-2023-6155 Quiz Maker < 6.4.9.5 - Unauthenticated Email Address Disclosure — Quiz Maker 5.3AIMediumAI2023-12-26
CVE-2023-6250 BestWebSoft's Like & Share < 2.74 - Unauthenticated Password Protected Post Read — BestWebSoft's Like & Share 5.3AIMediumAI2023-12-26
CVE-2023-5203 WP Sessions Time Monitoring Full Automatic < 1.0.9 - Unauthenticated SQL injection — WP Sessions Time Monitoring Full Automatic 7.5AIHighAI2023-12-26
CVE-2023-51363 Buffalo VR-S1000 安全漏洞 — VR-S1000 6.5AIMediumAI2023-12-26
CVE-2023-50297 Alfasado PowerCMS 安全漏洞 — PowerCMS (PowerCMS 6 Series) 6.1AIMediumAI2023-12-26
CVE-2022-34268 RWS WorldServer 安全漏洞 — n/a 9.8AICriticalAI2023-12-25
CVE-2023-6971 WordPress plugin Backup Migration 安全漏洞 — Backup Migration 8.1 High2023-12-23
CVE-2023-6972 Backup Migration <= 1.3.9 - Unauthenticated Path Traversal to Arbitrary File Deletion — BackupBliss – Backup & Migration with Free Cloud StorageCWE-22 9.8 Critical2023-12-23
CVE-2023-50259 Blind SSRF in /home/testslack endpoint — MedusaCWE-918 5.3 Medium2023-12-22
CVE-2023-50258 Blind SSRF in `/home/testdiscord` endpoint — MedusaCWE-918 5.3 Medium2023-12-22
CVE-2023-51708 部分Bentley Systems产品 安全漏洞 — n/a 7.5 -2023-12-22
CVE-2023-49689 Job Portal v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Job PortalCWE-89 9.8 Critical2023-12-21
CVE-2023-49688 Job Portal v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Job PortalCWE-89 9.8 Critical2023-12-21
CVE-2023-48298 Integer underflow leading to stack overflow in FPC codec decompression — ClickHouseCWE-191 5.9 Medium2023-12-21
CVE-2023-49681 Job Portal v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Job PortalCWE-89 9.8 Critical2023-12-21
CVE-2023-49677 Job Portal v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Job PortalCWE-89 9.8 Critical2023-12-21
CVE-2023-37520 HCL BigFix Platform is affected by Unathenticated Stored Cross-Site Scripting (XSS) — HCL BigFix Platform 7.7 High2023-12-21
CVE-2023-37519 HCL BigFix Platform is affected by Unathenticated Stored Cross-Site Scripting (XSS) — HCL BigFix Platform 7.7 High2023-12-21
CVE-2023-27319 CVE-2023-27319 Information Disclosure Vulnerability in ONTAP Mediator — ONTAP MediatorCWE-209 5.3 Medium2023-12-21
CVE-2023-48722 Student Result Management System v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Student Result Management SystemCWE-89 9.8 Critical2023-12-21
CVE-2023-48720 Student Result Management System v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Student Result Management SystemCWE-89 9.8 Critical2023-12-21
CVE-2023-48718 Student Result Management System v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Student Result Management SystemCWE-89 9.8 Critical2023-12-21
CVE-2023-48716 Student Result Management System v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Student Result Management SystemCWE-89 9.8 Critical2023-12-21
CVE-2023-48689 Railway Reservation System v1.0 - Multiple Unauthenticated SQL Injections (SQLi) — Railway Reservation SystemCWE-89 9.8 Critical2023-12-21

Vulnerabilities classified as access:pre-auth represent 18960 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.