access:pre-auth 类型相关 19009 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。
“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2021-4365 | WordPress Plugin Frontend File Manager 跨站脚本漏洞 — Frontend File Manager PluginCWE-79 | 7.2 | High | 2023-06-07 |
| CVE-2020-36717 | WordPress Plugin Kali Forms 跨站请求伪造漏洞 — Kali Forms — Contact Form & Drag-and-Drop BuilderCWE-352 | 8.8 | High | 2023-06-07 |
| CVE-2020-36718 | WordPress Plugin GDPR CCPA Compliance Support 代码问题漏洞 — GDPR CCPA Compliance & Cookie Consent BannerCWE-502 | 9.8 | Critical | 2023-06-07 |
| CVE-2020-36719 | WordPress Theme ListingPro - WordPress Directory & Listing 安全漏洞 — ListingPro - WordPress Directory & Listing ThemeCWE-862 | 9.8 | Critical | 2023-06-07 |
| CVE-2019-25145 | WordPress Plugin Contact Form & SMTP Plugin by PirateForms 跨站脚本漏洞 — Contact Form & SMTP Plugin for WordPress by PirateFormsCWE-79 | 7.2 | High | 2023-06-07 |
| CVE-2020-36716 | WordPress Plugin WP Activity Log 安全漏洞 — WP Activity LogCWE-862 | 7.3 | High | 2023-06-07 |
| CVE-2019-25144 | WordPress Plugin WP HTML Mail 跨站脚本漏洞 — WP Email TemplateCWE-79 | 5.4 | Medium | 2023-06-07 |
| CVE-2020-36712 | WordPress Plugin Kali Forms 安全漏洞 — Kali Forms — Contact Form & Drag-and-Drop BuilderCWE-862 | 8.6 | High | 2023-06-07 |
| CVE-2020-36713 | WordPress Plugin MStore API 访问控制错误漏洞 — MStore API – Create Native Android & iOS Apps On The CloudCWE-288 | 9.8 | Critical | 2023-06-07 |
| CVE-2019-25141 | WordPress Plugin Easy WP SMTP 安全漏洞 — Easy WP SMTP – WordPress SMTP and Email Logs: Gmail, Office 365, Outlook, Custom SMTP, and moreCWE-862 | 9.8 | Critical | 2023-06-07 |
| CVE-2021-4359 | WordPress Plugin Frontend File Manager 安全漏洞 — Frontend File Manager PluginCWE-862 | 6.5 | Medium | 2023-06-07 |
| CVE-2021-4362 | WordPress Plugin Kiwi Social Share 安全漏洞 — Social Sharing Plugin – Kiwi | 9.8 | Critical | 2023-06-07 |
| CVE-2021-4363 | WordPress Plugin WP Quick FrontEnd Editor 跨站脚本漏洞 — WP Quick FrontEnd Editor – WordPress PluginCWE-79 | 6.1 | Medium | 2023-06-07 |
| CVE-2021-4356 | WordPress Plugin Frontend File Manager 安全漏洞 — Frontend File Manager PluginCWE-862 | 9.0 | Critical | 2023-06-07 |
| CVE-2020-36710 | WordPress Plugin WPS Hide Login 安全漏洞 — WPS Hide LoginCWE-863 | 5.3 | Medium | 2023-06-07 |
| CVE-2019-25140 | WordPress Plugin WordPress Coming Soon Page & Maintenance Mode 跨站脚本漏洞 — Coming Soon Page & Maintenance ModeCWE-79 | 7.2 | High | 2023-06-07 |
| CVE-2021-4357 | WordPress Plugin uListing 安全漏洞 — Directory Listings WordPress plugin – uListingCWE-862 | 9.1 | Critical | 2023-06-07 |
| CVE-2021-4358 | WordPress Plugin WP DSGVO Tools (GDPR) 跨站脚本漏洞 — WP DSGVO Tools (GDPR)CWE-79 | 7.2 | High | 2023-06-07 |
| CVE-2021-4355 | WordPress Plugin Welcart e-Commerce 安全漏洞 — Welcart e-CommerceCWE-862 | 7.5 | High | 2023-06-07 |
| CVE-2019-25139 | WordPress Plugin Coming Soon Page & Maintenance Mode 安全漏洞 — Coming Soon Page & Maintenance ModeCWE-862 | 6.5 | Medium | 2023-06-07 |
| CVE-2020-36708 | WordPress theme Epsilon Framework 代码注入漏洞 — AntreasCWE-94 | 9.8 | Critical | 2023-06-07 |
| CVE-2019-25138 | WordPress Plugin User Submitted Posts 代码问题漏洞 — User Submitted Posts – Enable Users to Submit Posts from the Front EndCWE-434 | 9.8 | Critical | 2023-06-07 |
| CVE-2020-36707 | WordPress Plugin Coming Soon & Maintenance Mode Page 跨站请求伪造漏洞 — Coming Soon & Maintenance Mode Page & Under ConstructionCWE-352 | 8.8 | High | 2023-06-07 |
| CVE-2021-4352 | WordPress Plugin JobSearch WP Job Board 安全漏洞 — JobSearch WP Job BoardCWE-284 | 5.3 | Medium | 2023-06-07 |
| CVE-2021-4351 | WordPress Plugin Frontend File Manager 安全漏洞 — Frontend File Manager PluginCWE-862 | 5.8 | Medium | 2023-06-07 |
| CVE-2021-4350 | WordPress Plugin Frontend File Manager 安全漏洞 — Frontend File Manager PluginCWE-862 | 7.2 | High | 2023-06-07 |
| CVE-2021-4345 | WordPress Plugin uListing 安全漏洞 — Directory Listings WordPress plugin – uListingCWE-862 | 6.5 | Medium | 2023-06-07 |
| CVE-2021-4346 | WordPress Plugin uListing 安全漏洞 — Directory Listings WordPress plugin – uListingCWE-862 | 9.8 | Critical | 2023-06-07 |
| CVE-2021-4348 | WordPress Plugin Ultimate GDPR & CCPA 输入验证错误漏洞 — Ultimate GDPR & CCPA Compliance Toolkit for WordPressCWE-862 | 7.5 | High | 2023-06-07 |
| CVE-2021-4343 | WordPress Plugin Unauthenticated Account Creation 安全漏洞 — Directory Listings WordPress plugin – uListingCWE-862 | 9.8 | Critical | 2023-06-07 |
access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19009 条 CVE 漏洞。