Vulnerabilities > CVE-2022-29413 - Unspecified vulnerability in Hermit Project Hermit 3.1.6

047910
CVSS 6.1 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
hermit-project

Summary

Cross-Site Request Forgery (CSRF) leading to Stored Cross-Site Scripting (XSS) in Mufeng's Hermit ????? plugin <= 3.1.6 on WordPress via &title parameter.

Vulnerable Configurations

Part Description Count
Application
Hermit_Project
2