Lucene search
K

10 matches found

NVD
NVD
added 2022/04/28 5:15 p.m.21 views

CVE-2022-29411

SQL Injection SQLi vulnerability in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress allows attackers to execute SQLi attack via &id...

9.8CVSS0.01045EPSS
Exploits0References2
NVD
NVD
added 2022/04/28 5:15 p.m.22 views

CVE-2022-29413

Cross-Site Request Forgery CSRF leading to Stored Cross-Site Scripting XSS in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress via &title parameter...

6.1CVSS0.00366EPSS
Exploits0References2
NVD
NVD
added 2022/04/28 5:15 p.m.18 views

CVE-2022-29410

Authenticated SQL Injection SQLi vulnerability in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress allows attackers with Subscriber or higher user roles to execute SQLi attack via &ids...

8.8CVSS0.00862EPSS
Exploits0References2
Prion
Prion
added 2022/04/28 5:15 p.m.15 views

Sql injection

SQL Injection SQLi vulnerability in Mufeng's Hermit ????? plugin = 3.1.6 on WordPress allows attackers to execute SQLi attack via &id...

7.5CVSS9.8AI score0.01045EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/04/28 5:15 p.m.26 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF leading to Stored Cross-Site Scripting XSS in Mufeng's Hermit ????? plugin = 3.1.6 on WordPress via &title parameter...

4.3CVSS6.1AI score0.00366EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2022/04/28 5:15 p.m.18 views

Sql injection

Authenticated SQL Injection SQLi vulnerability in Mufeng's Hermit ????? plugin = 3.1.6 on WordPress allows attackers with Subscriber or higher user roles to execute SQLi attack via &ids...

6.5CVSS9AI score0.00862EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/04/28 4:20 p.m.87 views

CVE-2022-29411

CVE-2022-29411 affects WordPress Hermit plugin versions ≤ 3.1.6. The vulnerability is an unauthenticated SQL Injection via the id parameter (unsanitized/uncalled parameter handling), enabling attackers to inject SQL statements. Impact per sources includes potential disclosure/modify data and poss...

9.8CVSS9.6AI score0.01045EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2022/04/28 4:16 p.m.88 views

CVE-2022-29413

The CVE-2022-29413 entry concerns Mufeng’s Hermit WordPress plugin (versions

6.1CVSS5.4AI score0.00366EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/04/28 4:16 p.m.25 views

CVE-2022-29413 WordPress Hermit 音乐播放器 plugin <= 3.1.6 - Cross-Site Request Forgery (CSRF) leading to Stored Cross-Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF leading to Stored Cross-Site Scripting XSS in Mufeng's Hermit 音乐播放器 plugin = 3.1.6 on WordPress via &title parameter...

4.7CVSS6.3AI score0.00366EPSS
Exploits0References2
CVE
CVE
added 2022/04/28 4:14 p.m.76 views

CVE-2022-29410

CVE-2022-29410 corresponds to a SQL injection in WordPress plugin Hermit (Hermit 音乐播放器)

8.8CVSS8.6AI score0.00862EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder