Lucene search
WpvulndbWPVDB-ID:0B5EB08F-4D48-4C78-8F38-B8D4D8F1CC55HistoryApr 28, 2022 - 12:00 a.m.
Hermit <= 3.1.6 - Arbitrary Cache/Source Deletion & Source Creation via CSRF
2022-04-2800:00:00
wpscan.com
8
0.001 Low
EPSS
Percentile
29.7%
The plugin does not have CSRF checks in multiple actions, which could allow attackers to make logged in users perform them via CSRF attacks
Related
patchstack
patchstack
cvelist
cvelist
nvd
nvd
CVE-2022-29412
2022-04-28 17:15:39
prion
prion
Cross site request forgery (csrf)
2022-04-28 17:15:00
cve
cve
CVE-2022-29412
2022-04-28 17:15:39