Security Advisory
CVE-2022-29410
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
Authenticated SQL Injection (SQLi) vulnerability in Mufengs Hermit 音乐播放器 plugin <= 3.1.6 on WordPress allows attackers with Subscriber or higher user roles to execute SQLi attack via (&ids).