2022-04-28 16:16:20
Patchstack
PUBLISHED
Cross-Site Request Forgery (CSRF) leading to Stored Cross-Site Scripting (XSS) in Mufengs Hermit 音乐播放器 plugin <= 3.1.6 on WordPress via &title parameter.