目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

access:pre-auth 标签下的 CVE 漏洞 19015

access:pre-auth 类型相关 19015 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2023-2745 WordPress 路径遍历漏洞 — WordPressCWE-22 5.4 Medium2023-05-17
CVE-2023-2608 WordPress plugin Multiple Page Generator 跨站请求伪造漏洞 — Multiple Page Generator Plugin – MPGCWE-352 3.1 Low2023-05-17
CVE-2023-2706 WordPress plugin OTP Login Woocommerce & Gravity Forms 授权问题漏洞 — OTP Login & Register WoocommerceCWE-287 8.1 High2023-05-17
CVE-2023-2528 WordPress plugin Contact Form by Supsystic 跨站请求伪造漏洞 — Contact Form by SupsysticCWE-352 5.4 Medium2023-05-16
CVE-2023-28076 Dell CloudLink 加密问题漏洞 — CloudLinkCWE-327 5.9 Medium2023-05-16
CVE-2023-2499 WordPress plugin RegistrationMagic 授权问题漏洞 — RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User LoginCWE-288 9.8 Critical2023-05-16
CVE-2023-2710 WordPress plugin video carousel slider with lightbox 跨站脚本漏洞 — video carousel slider with lightboxCWE-79 6.1 Medium2023-05-16
CVE-2023-2708 WordPress plugin Video Gallery 跨站脚本漏洞 — Video GalleryCWE-79 6.1 Medium2023-05-16
CVE-2022-4774 WordPress plugin Bit Form 代码问题漏洞 — Bit Form 9.8 -2023-05-15
CVE-2023-0812 WordPress plugin Active Directory Integration / LDAP Integration 信息泄露漏洞 — Active Directory Integration / LDAP Integration 7.5 -2023-05-15
CVE-2023-2180 WordPress plugin KIWIZ Invoices Certification & PDF System 安全漏洞 — KIWIZ Invoices Certification & PDF System 9.8 -2023-05-15
CVE-2023-0600 WordPress plugin WP Visitor Statistics (Real Time Traffic) SQL注入漏洞 — WP Visitor Statistics (Real Time Traffic) 9.8 -2023-05-15
CVE-2022-4048 3s-smart Software Solutions CODESYS Development System 加密问题漏洞 — CODESYS Development System V3CWE-326 7.7 High2023-05-15
CVE-2023-1698 多款WAGO产品操作系统命令注入漏洞 — Compact Controller CC100CWE-78 9.8 Critical2023-05-15
CVE-2023-1934 SDG Technologies PnPSCADA SQL注入漏洞 — PnPSCADACWE-89 9.8 Critical2023-05-12
CVE-2023-23444 SICK Flexi Classic 访问控制错误漏洞 — UE410-EN3 FLEXI ETHERNET GATEW. 7.5 High2023-05-12
CVE-2023-1096 NetApp SnapCenter 安全漏洞 — SnapCenter 9.8 -2023-05-12
CVE-2023-28359 Rocket.Chat SQL注入漏洞 — Rocket.ChatCWE-89 9.4 -2023-05-11
CVE-2023-31151 Schweitzer Engineering Laboratories Real Time Automation Controller 信任管理问题漏洞 — SEL-3505CWE-295 4.7 Medium2023-05-10
CVE-2022-41985 Weston Embedded uC-FTPs 授权问题漏洞 — uC-FTPsCWE-303 8.6 High2023-05-10
CVE-2023-27298 Intel WULT software 代码问题漏洞 — WULT software maintained by Intel(R) 8.8 High2023-05-10
CVE-2022-41646 Intel IPP Cryptography software 安全漏洞 — Intel(R) IPP Cryptography software 4.7 Medium2023-05-10
CVE-2023-22441 Seiko Solutions SkyBridge 访问控制错误漏洞 — SkyBridge MB-A200 and SkyBridge BASIC MB-A130 9.8 -2023-05-10
CVE-2023-23578 Seiko Solutions SkyBridge 安全漏洞 — SkyBridge MB-A200 9.8 -2023-05-10
CVE-2023-23901 Seiko Solutions SkyBridge 信任管理问题漏洞 — SkyBridge MB-A200 and SkyBridge BASIC MB-A130 6.5 -2023-05-10
CVE-2023-23906 Seiko Solutions SkyBridge 访问控制错误漏洞 — SkyBridge MB-A100/110 9.8 -2023-05-10
CVE-2023-25070 Seiko Solutions SkyBridge 安全漏洞 — SkyBridge MB-A100/110 9.8 -2023-05-10
CVE-2023-25072 Seiko Solutions SkyBridge 安全漏洞 — SkyBridge MB-A100/110 9.8 -2023-05-10
CVE-2023-25184 Seiko Solutions SkyBridge 安全漏洞 — SkyBridge MB-A200, SkyBridge BASIC MB-A130, and SkySpider MB-R210 9.8 -2023-05-10
CVE-2023-27510 Jubei JB inquiry form 安全漏洞 — JB Inquiry form 7.5 -2023-05-10

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19015 条 CVE 漏洞。