目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

access:pre-auth 标签下的 CVE 漏洞 19009

access:pre-auth 类型相关 19009 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2020-36741 WordPress Plugin MultiVendorX 跨站请求伪造漏洞 — MultiVendorX – WooCommerce Multivendor Marketplace SolutionsCWE-352 4.3 Medium2023-07-01
CVE-2021-4391 WordPress Plugin Ultimate Gift Cards for WooCommerce 跨站请求伪造漏洞 — Ultimate Gift Cards for WooCommerceCWE-352 4.3 Medium2023-07-01
CVE-2021-4389 WordPress Plugin WP Travel 跨站请求伪造漏洞 — WP Travel – Ultimate Travel Booking System, Tour Management EngineCWE-352 4.3 Medium2023-07-01
CVE-2021-4390 WordPress Plugin Contact Form 7 Style 跨站请求伪造漏洞 — Contact Form 7 StyleCWE-352 4.3 Medium2023-07-01
CVE-2020-36740 WordPress Plugin Radio Buttons for Taxonomies 跨站请求伪造漏洞 — Radio Buttons for TaxonomiesCWE-352 4.3 Medium2023-07-01
CVE-2021-4393 WordPress Plugin eCommerce Product Catalog 跨站请求伪造漏洞 — eCommerce Product Catalog Plugin for WordPressCWE-352 4.3 Medium2023-07-01
CVE-2021-4387 WordPress Plugin WP Opal Estate 跨站请求伪造漏洞 — Opal EstateCWE-352 4.3 Medium2023-07-01
CVE-2021-4385 WordPress Plugin WP Private Content Plus 跨站请求伪造漏洞 — WP Private Content PlusCWE-352 4.3 Medium2023-07-01
CVE-2021-4386 WordPress Plugin WP Security Question 跨站请求伪造漏洞 — WP Security QuestionCWE-352 4.3 Medium2023-07-01
CVE-2020-36738 WordPress Plugin Cool Timeline 跨站请求伪造漏洞 — Cool Timeline (Horizontal & Vertical Timeline)CWE-352 4.3 Medium2023-07-01
CVE-2020-36739 WordPress Plugin Feed Them Social – Page, Post, Video, and Photo Galleries 跨站请求伪造漏洞 — Feed Them Social – Social Media Feeds, Video, and Photo GalleriesCWE-352 4.3 Medium2023-07-01
CVE-2020-36736 WordPress Plugin WooCommerce Checkout & Funnel Builder by CartFlows 跨站请求伪造漏洞 — CartFlows – Funnel Builder & Checkout Plugin for WooCommerceCWE-352 4.3 Medium2023-07-01
CVE-2020-36737 WordPress Plugin Import / Export Customizer Settings 跨站请求伪造漏洞 — Import / Export Customizer SettingsCWE-352 4.3 Medium2023-07-01
CVE-2021-4384 WordPress Plugin Photo Gallery – Image Gallery 跨站请求伪造漏洞 — WordPress Photo Gallery – Image GalleryCWE-352 4.3 Medium2023-07-01
CVE-2020-36735 WordPress Plugin WP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting 跨站请求伪造漏洞 — ERP: Complete HR, Accounting & CRM Suite with WooCommerce CRM SupportCWE-352 4.3 Medium2023-07-01
CVE-2023-28323 Ivanti Endpoint Manager 代码问题漏洞 — Ivanti Endpoint Manager 10.0 -2023-06-30
CVE-2023-2846 Mitsubishi Electric MELSEC iQ-F series 安全漏洞 — MELSEC-F Series FX3U-16MR/ESCWE-294 7.5 High2023-06-30
CVE-2023-2834 WordPress Plugin BookIt 访问控制错误漏洞 — Bookit — Booking & Appointment CalendarCWE-288 9.8 Critical2023-06-30
CVE-2023-36144 Intelbras SG 2404 MR 安全漏洞 — n/a 7.5 -2023-06-30
CVE-2023-36347 POS Codekop 访问控制错误漏洞 — n/a 5.3 -2023-06-30
CVE-2015-1313 JetBrains TeamCity 安全漏洞 — TeamCity 8.2 -2023-06-29
CVE-2023-2982 WordPress plugin Social Login and Register 安全漏洞 — miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn)CWE-288 9.8 Critical2023-06-29
CVE-2023-32610 SYNCK GRAPHICA Mailform Pro CGI 安全漏洞 — Mailform Pro CGI 7.5 -2023-06-29
CVE-2023-32623 WordPress Plugin Snow Monkey Forms 路径遍历漏洞 — Snow Monkey Forms 9.1 -2023-06-28
CVE-2023-3407 WordPress Plugin Subscribe2 跨站请求伪造漏洞 — Subscribe2 – Form, Email Subscribers & NewslettersCWE-352 4.3 Medium2023-06-28
CVE-2023-3427 WordPress Plugin Salon Booking System 跨站请求伪造漏洞 — Salon Booking System – Free VersionCWE-352 5.4 Medium2023-06-28
CVE-2023-34761 7-Eleven LED Message Cup 安全漏洞 — n/a 7.1 -2023-06-28
CVE-2023-20006 多款Cisco产品 安全漏洞 — Cisco Adaptive Security Appliance (ASA) SoftwareCWE-681 8.6 High2023-06-28
CVE-2023-20108 Cisco Unified Communications Manager 安全漏洞 — Cisco Unified Communications Manager IM and Presence ServiceCWE-789 7.5 High2023-06-28
CVE-2023-20119 多款Cisco产品 跨站脚本漏洞 — Cisco Secure Email and Web ManagerCWE-79 6.1 Medium2023-06-28

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19009 条 CVE 漏洞。