Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

access:pre-auth — CVE vulnerabilities tagged 18839

18839 CVE security advisories tagged "access:pre-auth" with AI Chinese analysis, CVSS, references and POCs.

CVE IDTitleCVSSSeverityPublished
CVE-2018-25139 FLIR AX8 Thermal Camera 1.32.16 Unauthenticated RTSP Stream Disclosure — FLIR AX8 Thermal CameraCWE-306 7.5 High2025-12-24
CVE-2018-25136 FLIR Brickstream 3D+ 2.1.742.1842 Unauthenticated RTSP Stream Disclosure — Brickstream 3D+CWE-306 7.5 High2025-12-24
CVE-2018-25137 FLIR Brickstream 3D+ 2.1.742.1842 Unauthenticated Config File Disclosure — FLIR Brickstream 3D+CWE-306 7.5 High2025-12-24
CVE-2018-25134 Synaccess netBooter NP-02x/NP-08x 6.8 Authentication Bypass via webNewAcct.cgi — netBooter NP-02x/NP-08xCWE-306 9.8 Critical2025-12-24
CVE-2018-25129 SOCA Access Control System 180612 Information Disclosure via Multiple Endpoints — SOCA Access Control SystemCWE-639 7.5 High2025-12-24
CVE-2025-13773 Print Invoice & Delivery Notes for WooCommerce <= 5.8.0 - Unauthenticated Remote Code Execution — Print Invoice & Delivery Notes for WooCommerceCWE-94 9.8 Critical2025-12-24
CVE-2024-39037 AIRC MyNET 安全漏洞 — n/a 9.8AICriticalAI2025-12-24
CVE-2025-68667 Conduit-derived homeservers are affected by a Confused Deputy and Improper Input Validation issue — continuwuityCWE-20 5.3AIMediumAI2025-12-23
CVE-2025-11419 Keycloak: keycloak tls client-initiated renegotiation denial of service CWE-770 7.5 High2025-12-23
CVE-2025-14388 PhastPress <= 3.7 - Unauthenticated Arbitrary File Read via Null Byte Injection — PhastPressCWE-158 9.8 Critical2025-12-23
CVE-2025-14163 Premium Addons for Elementor <= 4.11.53 - Cross-Site Request Forgery via 'insert_inner_template' — Premium Addons for Elementor – Powerful Elementor Templates & WidgetsCWE-352 4.3 Medium2025-12-23
CVE-2025-14155 Premium Addons for Elementor <= 4.11.53 - Missing Authorization to Unauthenticated Sensitive Information Exposure via 'get_template_content' — Premium Addons for Elementor – Powerful Elementor Templates & WidgetsCWE-862 5.3 Medium2025-12-23
CVE-2023-53962 SOUND4 IMPACT/FIRST/PULSE/Eco v2.x Unauthenticated Directory Traversal File Write — Impact/Pulse/FirstCWE-22 7.5 High2025-12-22
CVE-2023-53963 SOUND4 IMPACT/FIRST/PULSE/Eco v2.x Unauthenticated Remote Command Injection — Impact/Pulse/FirstCWE-78 9.8 Critical2025-12-22
CVE-2023-53964 SOUND4 IMPACT/FIRST/PULSE/Eco v2.x Unauthenticated Factory Reset Vulnerability — Impact/Pulse/FirstCWE-306 9.8 Critical2025-12-22
CVE-2023-53974 D-Link DSL-124 ME_1.00 Backup Configuration File Disclosure via Unauthenticated Request — DSL-124 Wireless N300 ADSL2+CWE-306 7.5 High2025-12-22
CVE-2023-53975 Atom CMS 2.0 Unauthenticated SQL Injection via Admin Index Page — Atom CMSCWE-89 7.5 High2025-12-22
CVE-2023-53972 WebTareas 2.4 Unauthenticated SQL Injection via Session Cookie Parameter — WebTareasCWE-89 7.5 High2025-12-22
CVE-2025-34457 wb2osz/direwolf <= 1.8.1 Stack-based Buffer Overflow DoS — Dire WolfCWE-121 9.8AICriticalAI2025-12-22
CVE-2025-34458 wb2osz/direwolf <= 1.8.1 Reachable Assertion DoS — Dire WolfCWE-617 7.5AIHighAI2025-12-22
CVE-2025-14273 Mattermost Jira plugin user spoofing enables Jira request forgery. — MattermostCWE-303 7.2 High2025-12-22
CVE-2025-12049 Sharp Media Player MP-01 安全漏洞 — Media Player MP-01CWE-306 9.1AICriticalAI2025-12-22
CVE-2025-15016 Ragic|Enterprise Cloud Database - Hard-coded Cryptographic Key — Enterprise Cloud DatabaseCWE-321 9.8 Critical2025-12-22
CVE-2025-15015 Ragic|Enterprise Cloud Database - Arbitrary File Read — Enterprise Cloud DatabaseCWE-23 7.5 High2025-12-22
CVE-2025-15007 Tenda WH450 HTTP Request L7Im stack-based overflow — WH450CWE-121 9.8 Critical2025-12-22
CVE-2025-65270 ClinCapture EDC 安全漏洞 — n/a 6.1AIMediumAI2025-12-22
CVE-2025-65856 Xiongmai XM530 安全漏洞 — n/a 7.5AIHighAI2025-12-22
CVE-2025-67418 ClipBucket 安全漏洞 — n/a 9.8AICriticalAI2025-12-22
CVE-2025-68645 Zimbra Collaboration 安全漏洞 — n/a 7.5AIHighAI2025-12-22
CVE-2025-14800 Redirection for Contact Form 7 <= 3.2.7 - Unauthenticated Arbitrary File Copy via move_file_to_upload — Redirection for Contact Form 7CWE-434 8.1 High2025-12-21

Vulnerabilities classified as access:pre-auth represent 18839 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.