0.001 Low
EPSS
Percentile
20.9%
Cross-Site Request Forgery (CSRF) leading to Stored Cross-Site Scripting (XSS) in Mufeng’s Hermit ??? plugin <= 3.1.6 on WordPress via &title parameter.
patchstack.com/database/vulnerability/hermit/wordpress-hermit-plugin-3-1-6-cross-site-request-forgery-csrf-leading-to-stored-cross-site-scripting-xss-vulnerability
wordpress.org/plugins/hermit/