Lucene search
+L

59 matches found

OSV
OSV
added 2022/04/28 5:15 p.m.6 views

CVE-2022-29411

SQL Injection SQLi vulnerability in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress allows attackers to execute SQLi attack via &id...

9.8CVSS7.4AI score0.01032EPSS
Exploits0References2
OSV
OSV
added 2022/04/28 5:15 p.m.6 views

CVE-2022-29413

Cross-Site Request Forgery CSRF leading to Stored Cross-Site Scripting XSS in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress via &title parameter...

6.1CVSS6.4AI score
Exploits0References2
NVD
NVD
added 2022/04/28 5:15 p.m.24 views

CVE-2022-29412

Multiple Cross-Site Request Forgery CSRF vulnerabilities in Hermit 音乐播放器 plugin = 3.1.6 on WordPress allow attackers to delete cache, delete a source, create source...

5.8CVSS0.00401EPSS
Exploits0References2
NVD
NVD
added 2022/04/28 5:15 p.m.22 views

CVE-2022-29411

SQL Injection SQLi vulnerability in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress allows attackers to execute SQLi attack via &id...

9.8CVSS0.01032EPSS
Exploits0References2
NVD
NVD
added 2022/04/28 5:15 p.m.20 views

CVE-2022-29410

Authenticated SQL Injection SQLi vulnerability in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress allows attackers with Subscriber or higher user roles to execute SQLi attack via &ids...

8.8CVSS0.00851EPSS
Exploits0References2
OSV
OSV
added 2022/04/28 5:15 p.m.6 views

CVE-2022-29410

Authenticated SQL Injection SQLi vulnerability in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress allows attackers with Subscriber or higher user roles to execute SQLi attack via &ids...

8.8CVSS5.9AI score0.00851EPSS
Exploits0References2
Prion
Prion
added 2022/04/28 5:15 p.m.18 views

Cross site request forgery (csrf)

Multiple Cross-Site Request Forgery CSRF vulnerabilities in Hermit ????? plugin = 3.1.6 on WordPress allow attackers to delete cache, delete a source, create source...

5.8CVSS5.7AI score0.00401EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/04/28 5:15 p.m.19 views

Sql injection

Authenticated SQL Injection SQLi vulnerability in Mufeng's Hermit ????? plugin = 3.1.6 on WordPress allows attackers with Subscriber or higher user roles to execute SQLi attack via &ids...

6.5CVSS9AI score0.00851EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/04/28 5:15 p.m.16 views

Sql injection

SQL Injection SQLi vulnerability in Mufeng's Hermit ????? plugin = 3.1.6 on WordPress allows attackers to execute SQLi attack via &id...

7.5CVSS9.8AI score0.01032EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/04/28 5:15 p.m.28 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF leading to Stored Cross-Site Scripting XSS in Mufeng's Hermit ????? plugin = 3.1.6 on WordPress via &title parameter...

4.3CVSS6.1AI score0.00373EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/04/28 4:20 p.m.11 views

CVE-2022-29411 WordPress Hermit 音乐播放器 plugin <= 3.1.6 - Unauthenticated SQL Injection SQLi) vulnerability

SQL Injection SQLi vulnerability in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress allows attackers to execute SQLi attack via &id...

8.3CVSS9.3AI score0.01032EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/04/28 4:20 p.m.29 views

CVE-2022-29411 WordPress Hermit 音乐播放器 plugin <= 3.1.6 - Unauthenticated SQL Injection SQLi) vulnerability

SQL Injection SQLi vulnerability in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress allows attackers to execute SQLi attack via &id...

8.3CVSS10AI score0.01032EPSS
Exploits0References2
CVE
CVE
added 2022/04/28 4:20 p.m.90 views

CVE-2022-29411

CVE-2022-29411 affects WordPress Hermit plugin versions ≤ 3.1.6. The vulnerability is an unauthenticated SQL Injection via the id parameter (unsanitized/uncalled parameter handling), enabling attackers to inject SQL statements. Impact per sources includes potential disclosure/modify data and poss...

9.8CVSS9.6AI score0.01032EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/04/28 4:18 p.m.90 views

CVE-2022-29412

CVE-2022-29412 corresponds to CSRF vulnerabilities in the WordPress Hermit plugin (versions

5.8CVSS5.7AI score0.00401EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/04/28 4:18 p.m.32 views

CVE-2022-29412 WordPress Hermit 音乐播放器 plugin <= 3.1.6 - Multiple Cross-Site Request Forgery (CSRF) vulnerabilities

Multiple Cross-Site Request Forgery CSRF vulnerabilities in Hermit 音乐播放器 plugin = 3.1.6 on WordPress allow attackers to delete cache, delete a source, create source...

5.4CVSS6AI score0.00401EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/04/28 4:16 p.m.6 views

CVE-2022-29413 WordPress Hermit 音乐播放器 plugin <= 3.1.6 - Cross-Site Request Forgery (CSRF) leading to Stored Cross-Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF leading to Stored Cross-Site Scripting XSS in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress via &title parameter...

4.7CVSS5.2AI score0.00373EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/04/28 4:16 p.m.29 views

CVE-2022-29413 WordPress Hermit 音乐播放器 plugin <= 3.1.6 - Cross-Site Request Forgery (CSRF) leading to Stored Cross-Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF leading to Stored Cross-Site Scripting XSS in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress via &title parameter...

4.7CVSS6.3AI score0.00373EPSS
Exploits0References2
CVE
CVE
added 2022/04/28 4:16 p.m.89 views

CVE-2022-29413

The CVE-2022-29413 entry concerns Mufeng’s Hermit WordPress plugin (versions

6.1CVSS5.4AI score0.00373EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/04/28 4:14 p.m.78 views

CVE-2022-29410

CVE-2022-29410 corresponds to a SQL injection in WordPress plugin Hermit (Hermit 音乐播放器)

8.8CVSS8.6AI score0.00851EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/04/28 4:14 p.m.23 views

CVE-2022-29410 WordPress Hermit 音乐播放器 plugin <= 3.1.6 - Authenticated SQL Injection (SQLi) vulnerability

Authenticated SQL Injection SQLi vulnerability in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress allows attackers with Subscriber or higher user roles to execute SQLi attack via &ids...

7.4CVSS9.3AI score0.00851EPSS
Exploits0References2
Rows per page
Query Builder