access:pre-auth 类型相关 18833 条 CVE 漏洞,含 AI 中文分析、CVSS、参考链接与 POC。
| CVE ID | 标题 | CVSS | 风险等级 | Published |
|---|---|---|---|---|
| CVE-2025-68271 | OpenC3 COSMOS 安全漏洞 — cosmosCWE-95 | 10.0 | Critical | 2026-01-13 |
| CVE-2025-47855 | Fortinet FortiFone 信息泄露漏洞 — FortiFoneCWE-200 | 9.3 | Critical | 2026-01-13 |
| CVE-2025-12548 | Eclipse Che 访问控制错误漏洞 — Red Hat OpenShift Dev Spaces (RHOSDS) 3.22CWE-306 | 9.0 | Critical | 2026-01-13 |
| CVE-2025-14507 | WordPress plugin EventPrime 信息泄露漏洞 — EventPrime – Events Calendar, Bookings and TicketsCWE-200 | 5.3 | Medium | 2026-01-13 |
| CVE-2025-40805 | Siemens Industrial Edge Devices 安全漏洞 — Industrial Edge Cloud Device (IECD)CWE-639 | 10.0 | Critical | 2026-01-13 |
| CVE-2025-41717 | PHOENIX CONTACT TC ROUTER 代码注入漏洞 — TC ROUTER 3002T-3GCWE-94 | 8.8 | High | 2026-01-13 |
| CVE-2025-14829 | WordPress plugin E-xact 安全漏洞 — E-xact | Hosted Payment | | 9.1AI | CriticalAI | 2026-01-13 |
| CVE-2026-0514 | SAP Business Connector 跨站脚本漏洞 — SAP Business ConnectorCWE-79 | 6.1 | Medium | 2026-01-13 |
| CVE-2026-0513 | SAP Supplier Relationship Management 输入验证错误漏洞 — SAP Supplier Relationship Management (SICF Handler in SRM Catalog)CWE-601 | 4.7 | Medium | 2026-01-13 |
| CVE-2026-0500 | SAP Wily Introscope Enterprise Manager 代码注入漏洞 — SAP Wily Introscope Enterprise Manager (WorkStation)CWE-94 | 9.6 | Critical | 2026-01-13 |
| CVE-2026-0499 | SAP NetWeaver Enterprise Portal 跨站脚本漏洞 — SAP NetWeaver Enterprise PortalCWE-79 | 6.1 | Medium | 2026-01-13 |
| CVE-2025-68707 | Tongyu AX1800 安全漏洞 — n/a | 8.8AI | HighAI | 2026-01-13 |
| CVE-2026-22812 | opencode 安全漏洞 — opencodeCWE-306 | 8.8 | High | 2026-01-12 |
| CVE-2026-22788 | WebErpMesv2 访问控制错误漏洞 — WebErpMesv2CWE-306 | 8.2 | High | 2026-01-12 |
| CVE-2025-12420 | ServiceNow AI Platform 安全漏洞 — Now Assist AI AgentsCWE-250 | 9.8AI | CriticalAI | 2026-01-12 |
| CVE-2026-22781 | TinyWeb Server 操作系统命令注入漏洞 — TinyWebCWE-78 | 9.8AI | CriticalAI | 2026-01-12 |
| CVE-2025-68472 | MindsDB 安全漏洞 — mindsdbCWE-22 | 8.1 | High | 2026-01-12 |
| CVE-2026-0853 | A-Plus Video多款产品 安全漏洞 — AP-RM864PCWE-497 | 5.3 | Medium | 2026-01-12 |
| CVE-2025-52694 | Advantech 安全漏洞 — IoTSuite and IoT Edge Products | 10.0 | Critical | 2026-01-12 |
| CVE-2025-67146 | GYM-MANAGEMENT-SYSTEM 安全漏洞 — n/a | 9.8AI | CriticalAI | 2026-01-12 |
| CVE-2025-67147 | GYM-MANAGEMENT-SYSTEM 安全漏洞 — n/a | 9.8AI | CriticalAI | 2026-01-12 |
| CVE-2026-0831 | WordPress plugin Templately 安全漏洞 — Templately – Elementor & Gutenberg Template Library: 6500+ Free & Pro Ready Templates And Cloud!CWE-863 | 5.3 | Medium | 2026-01-10 |
| CVE-2025-14976 | WordPress plugin User Registration & Membership 跨站请求伪造漏洞 — User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login BuilderCWE-352 | 5.4 | Medium | 2026-01-10 |
| CVE-2025-14948 | WordPress plugin miniOrange OTP Verification and SMS Notification for WooCommerce 安全漏洞 — miniOrange OTP Verification and SMS Notification for WooCommerceCWE-862 | 5.3 | Medium | 2026-01-10 |
| CVE-2025-13457 | WordPress plugin WooCommerce Square 安全漏洞 — WooCommerce SquareCWE-639 | 7.5 | High | 2026-01-10 |
| CVE-2026-22589 | Spree Commerce 安全漏洞 — spreeCWE-639 | 7.5 | High | 2026-01-10 |
| CVE-2026-22603 | OpenProject 安全漏洞 — openprojectCWE-307 | 9.8 | - | 2026-01-10 |
| CVE-2025-15501 | Sangfor Operation and Maintenance Management System 操作系统命令注入漏洞 — Operation and Maintenance Management SystemCWE-78 | 9.8 | Critical | 2026-01-09 |
| CVE-2025-15500 | Sangfor Operation and Maintenance Management System 操作系统命令注入漏洞 — Operation and Maintenance Management SystemCWE-78 | 9.8 | Critical | 2026-01-09 |
| CVE-2020-36875 | WordPress plugin AccessAlly 安全漏洞 — AccessAllyCWE-94 | 9.8 | - | 2026-01-09 |
access:pre-auth 是常见的弱点类别,本平台收录该类弱点关联的 18833 条 CVE 漏洞。