Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1110 CNY

100%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 19401

19401 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

The tag "access:pre-auth" identifies vulnerabilities that allow unauthenticated attackers to gain unauthorized access to a system, application, or network resource before legitimate credentials are verified. This classification is critical because it represents the lowest barrier to entry for exploitation, enabling remote code execution, data exfiltration, or full system compromise without prior authentication. Typical scenarios involve flaws in authentication mechanisms, such as broken access controls, insecure direct object references, or logic errors in session management that bypass login requirements. Attackers frequently target these weaknesses via exposed APIs, administrative interfaces, or default configurations. Because no user interaction or valid credentials are needed, pre-authentication flaws are among the most severe and widely exploited security issues, often leading to immediate breach of confidentiality, integrity, and availability across affected infrastructure.

CVE IDTitleCVSSSeverityPublished
CVE-2022-33323 Authentication Bypass Vulnerability in Robot Controller of MELFA SD/SQ series and F-series — MELFA SD/SQ Series Controller CR1DA-771 of RV-2SDCWE-489 7.5 High2023-02-02
CVE-2022-48113 TOTOLINK N200RE 信任管理问题漏洞 — n/a 9.8 -2023-02-02
CVE-2023-25013 TYPO3 访问控制错误漏洞 — n/a 8.6 High2023-02-02
CVE-2023-25014 TYPO3 访问控制错误漏洞 — n/a 8.6 High2023-02-02
CVE-2023-22418 BIG-IP APM virtual server vulnerability — BIG-IPCWE-601 6.1 Medium2023-02-01
CVE-2022-46679 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFSCWE-410 6.5 Medium2023-02-01
CVE-2022-45102 Dell EMC Data Protection Central 安全漏洞 — Data Protection CentralCWE-644 5.4 Medium2023-02-01
CVE-2022-45100 Dell PowerScale OneFS 信任管理问题漏洞 — PowerScale OneFSCWE-295 8.1 High2023-02-01
CVE-2022-45096 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFSCWE-355 5.4 Medium2023-02-01
CVE-2022-45101 Dell PowerScale OneFS 安全漏洞 — PowerScale OneFSCWE-274 7.3 High2023-02-01
CVE-2022-47769 Serenissima Informatica Fast Checkin 代码问题漏洞 — n/a 9.8 -2023-02-01
CVE-2022-47770 Serenissima Informatica Fast Checkin SQL注入漏洞 — n/a 9.8 -2023-02-01
CVE-2023-0587 Trend Micro Apex One 代码问题漏洞 — Trend Micro Apex One 9.1 -2023-02-01
CVE-2022-39059 ChangingTec MegaServiSignAdapter - Path Traversal — MegaServiSignAdapterCWE-22 7.5 High2023-01-31
CVE-2022-39060 ChangingTec MegaServiSignAdapter - Improper Input Validation — MegaServiSignAdapterCWE-20 9.8 Critical2023-01-31
CVE-2022-39061 ChangingTec MegaServiSignAdapter - Out-of-bounds Read — MegaServiSignAdapterCWE-125 6.5 Medium2023-01-31
CVE-2023-22900 Thinking Software Technology Co., Ltd. Efence - SQL Injection — EfenceCWE-89 9.8 Critical2023-01-31
CVE-2022-4395 Membership For WooCommerce < 2.1.7 - Unauthenticated Arbitrary File Upload — Membership For WooCommerce 9.8 -2023-01-30
CVE-2022-4872 WooCommerce Chained Products < 2.12.0 - Unauthenticated Arbitrary Options Update to 'no' — Chained Products 4.3 -2023-01-30
CVE-2023-0581 PrivateContent <= 8.4.3 - Protection Mechanism Bypass — PrivateContentCWE-602 5.3 Medium2023-01-30
CVE-2022-0223 Schneider Electric EcoStruxure Power Build 路径遍历漏洞 — EcoStruxure Power CommissionCWE-22 6.5 Medium2023-01-30
CVE-2023-22333 EasyMail 跨站脚本漏洞 — EasyMail 6.1 -2023-01-30
CVE-2021-46873 pfSense-pkg-WireGuard 安全漏洞 — n/a 5.3 -2023-01-29
CVE-2023-0558 ContentStudio <= 1.2.5 - Authorization Bypass — ContentStudioCWE-639 8.2 High2023-01-27
CVE-2023-0557 ContentStudio <= 1.2.5 - Information Exposure — ContentStudioCWE-200 7.5 High2023-01-27
CVE-2023-0556 ContentStudio <= 1.2.5 - Missing Authorization — ContentStudioCWE-862 9.8 Critical2023-01-27
CVE-2023-0554 Quick Restaurant Menu <= 2.0.2 - Cross-Site Request Forgery — Quick Restaurant MenuCWE-352 8.1 High2023-01-27
CVE-2022-2712 Eclipse GlassFish 路径遍历漏洞 — Eclipse GlassFishCWE-22 6.5 Medium2023-01-27
CVE-2022-39812 Italtel NetMatch-S CI 路径遍历漏洞 — n/a 7.5 -2023-01-27
CVE-2019-25053 Sage FRP 1000 路径遍历漏洞 — n/a 7.5 -2023-01-27

Vulnerabilities classified as access:pre-auth represent 19401 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.