6 matches found
EUVD-2022-33749
Malicious code in bioql PyPI...
EUVD-2022-33751
Malicious code in bioql PyPI...
EUVD-2022-33748
Malicious code in bioql PyPI...
CVE-2022-29411
SQL Injection SQLi vulnerability in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress allows attackers to execute SQLi attack via &id...
PT-2022-19584 · Mufeng · Mufeng'S Hermit 音乐播放器
Name of the Vulnerable Software and Affected Versions: Mufeng's Hermit 音乐播放器 plugin versions = 3.1.6 Description: An Authenticated SQL Injection SQLi issue allows attackers with Subscriber or higher user roles to execute SQLi attacks. The attack is executed via the &ids parameter. Recommendations...
PT-2022-19587 · Mufeng · Mufeng'S Hermit 音乐播放器 Plugin
Name of the Vulnerable Software and Affected Versions: Mufeng's Hermit 音乐播放器 plugin versions = 3.1.6 Description: The issue is related to Cross-Site Request Forgery CSRF that leads to Stored Cross-Site Scripting XSS via the title parameter. This allows for malicious script storage and execution...