目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

access:pre-auth 标签下的 CVE 漏洞 19065

access:pre-auth 类型相关 19065 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2022-1900 WordPress plugin Copify 跨站请求伪造漏洞 — CopifyCWE-352 8.8 High2022-06-13
CVE-2022-1918 WordPress plugin ToolBar to Share 跨站请求伪造漏洞 — ToolBar to ShareCWE-352 8.8 High2022-06-13
CVE-2022-1707 WordPress plugin Google Tag Manager 跨站脚本漏洞 — GTM4WP – A Google Tag Manager (GTM) plugin for WordPressCWE-79 6.1 Medium2022-06-13
CVE-2022-1412 WordPress plugin Log WP_Mail 信息泄露漏洞 — Log WP_Mail 7.5 -2022-06-13
CVE-2022-0885 WordPress plugin Member Hero 代码注入漏洞 — Member Hero 9.8 -2022-06-13
CVE-2022-0827 WordPress plugin Bestbooks SQL注入漏洞 — BestbooksCWE-89 9.8 -2022-06-13
CVE-2022-0786 WordPress plugin KiviCare SQL注入漏洞 — KiviCare – Clinic & Patient Management System (EHR)CWE-89 9.8 -2022-06-13
CVE-2022-1822 WordPress plugin Zephyr Project Manager 跨站脚本漏洞 — Zephyr Project ManagerCWE-79 6.1 Medium2022-06-13
CVE-2021-46816 Adobe Premiere Pro 缓冲区错误漏洞 — PremiereCWE-787 7.8 High2022-06-13
CVE-2021-46817 Adobe Media Encoder 缓冲区错误漏洞 — Media EncoderCWE-787 7.8 High2022-06-13
CVE-2021-46818 Adobe Media Encoder 缓冲区错误漏洞 — Media EncoderCWE-787 7.8 High2022-06-13
CVE-2022-29525 Rakuten Mobile Rakuten Casa 信任管理问题漏洞 — Rakuten Casa 9.8 -2022-06-13
CVE-2022-27174 EC-CUBE Easy Blog for EC-CUBE4 跨站请求伪造漏洞 — Easy Blog for EC-CUBE4 4.3 -2022-06-13
CVE-2021-41749 Nystudio107 Seomatic 代码注入漏洞 — n/a 9.8 -2022-06-12
CVE-2022-29095 Dell SupportAssist Client 跨站脚本漏洞 — SupportAssist ConsumerCWE-16 8.3 High2022-06-10
CVE-2018-17240 Netwave IP camera 安全漏洞 — n/a 7.5 -2022-06-10
CVE-2022-32563 Couchbase Sync Gateway 信任管理问题漏洞 — n/a 9.8 -2022-06-10
CVE-2022-24296 Mitsubishi Electric Air Conditioning System 加密问题漏洞 — Air Conditioning System G-150AD; Air Conditioning System AG-150A-A; Air Conditioning System AG-150A-J; Air Conditioning System GB-50AD; Air Conditioning System GB-50ADA-A; Air Conditioning System GB-50ADA-J; Air Conditioning System EB-50GU-A; Air Conditioning System EB-50GU-J; Air Conditioning System AE-200J; Air Conditioning System AE-200A; Air Conditioning System AE-200E; Air Conditioning System AE-50J; Air Conditioning System AE-50A; Air Conditioning System AE-50E; Air Conditioning System EW-50J; Air Conditioning System EW-50A; Air Conditioning System EW-50E; Air Conditioning System TE-200A; Air Conditioning System TE-50A; Air Conditioning System TW-50A 9.1 -2022-06-08
CVE-2022-30730 Samsung Pass 安全漏洞 — Samsung PassCWE-285 4.6 Medium2022-06-07
CVE-2022-25361 WatchGuard Firebox 安全漏洞 — n/a 9.1 -2022-06-07
CVE-2022-23712 Elasticsearch 安全漏洞 — elasticsearchCWE-754 7.5 -2022-06-06
CVE-2022-31485 Carrier LenelS2 HID Mercury access panels 安全漏洞 — LNL-X2210CWE-425 5.3 Medium2022-06-06
CVE-2022-31484 Carrier LenelS2 HID Mercury access panels 安全漏洞 — LNL-X2210CWE-425 7.5 High2022-06-06
CVE-2022-31482 Carrier LenelS2 HID Mercury access panels 安全漏洞 — LNL-X2210CWE-120 7.5 High2022-06-06
CVE-2022-31481 Carrier LenelS2 HID Mercury access panels 安全漏洞 — LNL-X2210CWE-120 10.0 Critical2022-06-06
CVE-2022-31480 Carrier LenelS2 HID Mercury access panels 安全漏洞 — LNL-X2210CWE-425 7.5 High2022-06-06
CVE-2022-31479 Carrier LenelS2 HID Mercury access panels 操作系统命令注入漏洞 — LNL-X2210CWE-693 9.6 Critical2022-06-06
CVE-2022-1692 WordPress plugin CP Image Store with Slideshow SQL注入漏洞 — CP Image Store with SlideshowCWE-89 9.8 -2022-06-06
CVE-2022-1598 WordPress plugin WPQA Builder 访问控制错误漏洞 — WPQA Builder 5.3 -2022-06-06
CVE-2022-0788 WordPress plugin WP Fundraising Donation and Crowdfunding Platform SQL注入漏洞 — WP Fundraising Donation and Crowdfunding PlatformCWE-89 9.8 -2022-06-06

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19065 条 CVE 漏洞。