目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

access:pre-auth 标签下的 CVE 漏洞 19065

access:pre-auth 类型相关 19065 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。

“access:pre-auth”标签标识了无需身份验证即可触发的漏洞,涵盖18971个CVE。此类漏洞之所以关键,是因为攻击者无需凭证即可直接利用,极大降低了攻击门槛并扩大了潜在受害面。典型场景包括远程代码执行、未授权数据访问及拒绝服务攻击,常见于配置错误的API接口、默认凭证服务或存在逻辑缺陷的认证前处理模块,对系统安全性构成直接且严重的威胁。

CVE ID标题CVSS风险等级Published
CVE-2021-25078 WordPress plugin 跨站脚本漏洞 — Affiliates ManagerCWE-79 6.1 -2022-01-24
CVE-2021-24906 WordPress plugin 访问控制错误漏洞 — Protect WP AdminCWE-862 7.5 -2022-01-24
CVE-2022-23855 Saviynt Enterprise Identity Cloud 授权问题漏洞 — n/a 9.8 -2022-01-24
CVE-2021-46024 online-shopping-webvsite-in-php SQL注入漏洞 — n/a 9.8 -2022-01-23
CVE-2022-22553 DELL EMC AppSync 安全漏洞 — AppSyncCWE-307 8.1 High2022-01-21
CVE-2022-22552 DELL EMC AppSync 安全漏洞 — AppSyncCWE-1021 6.9 Medium2022-01-21
CVE-2022-22551 DELL EMC AppSync 授权问题漏洞 — AppSyncCWE-598 8.3 High2022-01-21
CVE-2021-43355 Fresenius Kabi Agilia Connect Infusion System 授权问题漏洞 — Vigilant Software Suite (Mastermed Dashboard)CWE-603 7.3 High2022-01-21
CVE-2021-33843 Fresenius Kabi Agilia Connect Infusion System 访问控制错误漏洞 — Agilia Connect WiFi CWE-552 5.3 Medium2022-01-21
CVE-2021-23233 Fresenius Kabi Agilia Connect Infusion System 信任管理问题漏洞 — Agilia Link+CWE-284 7.3 High2022-01-21
CVE-2022-23128 Mitsubishi Electric MC Works64 安全漏洞 — Mitsubishi Electric MC Works64; ICONICS GENESIS64; ICONICS Hyper Historian; ICONICS AnalytiX; ICONICS MobileHMI 9.8 -2022-01-21
CVE-2022-23127 Mitsubishi Electric MC Works64 跨站脚本漏洞 — Mitsubishi Electric MC Works64; ICONICS MobileHMI 6.1 -2022-01-21
CVE-2021-44593 Sourcecodester Simple College Website SQL注入漏洞 — n/a 9.8 -2022-01-21
CVE-2021-44736 Lexmark 授权问题漏洞 — n/a 9.1 -2022-01-20
CVE-2021-26247 Cacti 跨站脚本漏洞 — CactiCWE-79 6.1 -2022-01-19
CVE-2022-21390 Oracle Communications Applications 输入验证错误漏洞 — Communications Billing and Revenue Management 10.0 Critical2022-01-19
CVE-2022-21389 Oracle Communications Applications 输入验证错误漏洞 — Communications Billing and Revenue Management 10.0 Critical2022-01-19
CVE-2022-21387 Oracle Commerce 输入验证错误漏洞 — Commerce Platform 5.3 Medium2022-01-19
CVE-2022-21386 Oracle WebLogic Server 输入验证错误漏洞 — WebLogic Server 6.1 Medium2022-01-19
CVE-2022-21377 Oracle Construction and Engineering Suite 输入验证错误漏洞 — Primavera Portfolio Management 5.4 Medium2022-01-19
CVE-2022-21376 Oracle Construction and Engineering Suite 输入验证错误漏洞 — Primavera Portfolio Management 5.4 Medium2022-01-19
CVE-2022-21373 Oracle E-Business Suite 安全漏洞 — Partner Management 6.1 Medium2022-01-19
CVE-2022-21371 Oracle WebLogic Server 路径遍历漏洞 — WebLogic Server 7.5 High2022-01-19
CVE-2022-21369 Oracle PeopleSoft Enterprise PeopleTools 安全漏洞 — PeopleSoft Enterprise PT PeopleTools 6.1 Medium2022-01-19
CVE-2022-21366 Oracle Java SE和Oracle GraalVM 输入验证错误漏洞 — Java SE JDK and JRE 5.3 Medium2022-01-19
CVE-2022-21365 Oracle Java SE和Oracle GraalVM 输入验证错误漏洞 — Java SE JDK and JRE 5.3 Medium2022-01-19
CVE-2022-21364 Oracle PeopleSoft Enterprise PeopleTools 访问控制错误漏洞 — PeopleSoft Enterprise PT PeopleTools 5.3 Medium2022-01-19
CVE-2022-21361 Oracle WebLogic Server 输入验证错误漏洞 — WebLogic Server 6.1 Medium2022-01-19
CVE-2022-21360 Oracle Java SE和Oracle GraalVM 输入验证错误漏洞 — Java SE JDK and JRE 5.3 Medium2022-01-19
CVE-2022-21359 Oracle PeopleSoft Enterprise PeopleTools 安全漏洞 — PeopleSoft Enterprise PT PeopleTools 6.1 Medium2022-01-19

access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 19065 条 CVE 漏洞。