9 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.3%
Authenticated SQL Injection (SQLi) vulnerability in Mufeng’s Hermit ??? plugin <= 3.1.6 on WordPress allows attackers with Subscriber or higher user roles to execute SQLi attack via (&ids).
patchstack.com/database/vulnerability/hermit/wordpress-hermit-plugin-3-1-6-authenticated-sql-injection-sqli-vulnerability
wordpress.org/plugins/hermit/