CVE-2022-29410

Publication date

2022-04-28 16:14:10

Family

Patchstack

State

PUBLISHED

Description

Authenticated SQL Injection (SQLi) vulnerability in Mufengs Hermit 音乐播放器 plugin <= 3.1.6 on WordPress allows attackers with Subscriber or higher user roles to execute SQLi attack via (&ids).