Vulnerability List

CVE ID	Title	Vendor	Product	Severity	CVSS Score	Published At	AI Analysis
CVE-2024-10900	ProfileGrid – User Profiles, Groups and Communities <= 5.9.3.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary User Meta Deletion	metagauss	ProfileGrid – User Profiles, Groups and Communities	Medium	6.5	2024-11-20 06:42:54	Deep Dive
CVE-2024-37453	WordPress ProfileGrid – User Profiles, Groups and Communities plugin <= 5.8.7 - Broken Access Control vulnerability	ProfileGrid User Profiles	ProfileGrid	Medium	4.3	2024-11-01 14:18:21	Deep Dive
CVE-2024-49273	WordPress ProfileGrid plugin <= 5.9.3 - Cross Site Request Forgery (CSRF) vulnerability	Metagauss	ProfileGrid	Medium	4.3	2024-10-21 11:13:31	Deep Dive
CVE-2024-8861	ProfileGrid – User Profiles, Groups and Communities <= 5.9.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting	metagauss	ProfileGrid – User Profiles, Groups and Communities	Medium	6.4	2024-09-26 07:34:37	Deep Dive
CVE-2024-6410	ProfileGrid <= 5.8.9 - Authenticated (Subscriber+) Insecure Direct Object Reference	metagauss	ProfileGrid – User Profiles, Groups and Communities	Medium	4.3	2024-07-10 04:31:31	Deep Dive
CVE-2024-6411	ProfileGrid – User Profiles, Groups and Communities <= 5.8.9 - Authenticated (Subscriber+) Authorization Bypass to Privilege Escalation	metagauss	ProfileGrid – User Profiles, Groups and Communities	High	8.8	2024-07-10 04:31:30	Deep Dive
CVE-2023-52117	WordPress ProfileGrid plugin <= 5.6.6 - Broken Access Control vulnerability	Metagauss	ProfileGrid	Medium	4.3	2024-06-12 08:44:06	Deep Dive
CVE-2024-5453	ProfileGrid <= 5.8.6 - Missing Authorization	metagauss	ProfileGrid – User Profiles, Groups and Communities	Medium	4.3	2024-06-05 07:34:56	Deep Dive
CVE-2024-32774	WordPress ProfileGrid plugin <= 5.8.2 - Group Members Limit Bypass vulnerability	Metagauss	ProfileGrid	Medium	4.3	2024-05-17 09:37:46	Deep Dive
CVE-2024-3606	ProfileGrid – User Profiles, Memberships, Groups and Communities <= 5.8.3 - Missing Authorization	metagauss	ProfileGrid – User Profiles, Groups and Communities	Medium	4.3	2024-05-02 16:52:34	Deep Dive
CVE-2024-32772	WordPress ProfileGrid plugin <= 5.7.9 - Insecure Direct Object References (IDOR) vulnerability	Metagauss	ProfileGrid	Medium	4.3	2024-04-24 10:19:30	Deep Dive
CVE-2024-32808	WordPress ProfileGrid plugin <= 5.7.9 - Insecure Direct Object Reference (IDOR) vulnerability	Metagauss	ProfileGrid	Medium	5.4	2024-04-24 10:18:17	Deep Dive
CVE-2024-31362	WordPress ProfileGrid – User Profiles, Memberships, Groups and Communities plugin <= 5.7.8 - Cross Site Request Forgery (CSRF) vulnerability	Metagauss	ProfileGrid	Medium	4.3	2024-04-12 12:22:27	Deep Dive
CVE-2024-31291	WordPress ProfileGrid plugin <= 5.7.6 - IDOR on Friend Request vulnerability	Metagauss	ProfileGrid	Medium	4.3	2024-04-07 18:08:30	Deep Dive
CVE-2024-30513	WordPress ProfileGrid plugin <= 5.7.2 - Insecure Direct Object References (IDOR) vulnerability	Metagauss	ProfileGrid	Medium	6.5	2024-03-29 15:50:05	Deep Dive
CVE-2024-30491	WordPress ProfileGrid – User Profiles, Memberships, Groups and Communities plugin <= 5.7.8 - SQL Injection vulnerability	Metagauss	ProfileGrid	High	8.5	2024-03-29 13:49:57	Deep Dive
CVE-2024-30490	WordPress ProfileGrid plugin <= 5.7.8 - SQL Injection vulnerability	Metagauss	ProfileGrid	Critical	9.3	2024-03-29 13:47:25	Deep Dive
CVE-2024-30241	WordPress ProfileGrid – User Profiles, Memberships, Groups and Communities plugin <= 5.7.1 - Contributor+ SQL Injection vulnerability	Metagauss	ProfileGrid	High	8.5	2024-03-28 04:36:29	Deep Dive
CVE-2022-36352	WordPress ProfileGrid Plugin <= 5.0.3 is vulnerable to Broken Access Control	Profilegrid	ProfileGrid – User Profiles, Memberships, Groups and Communities	Medium	6.3	2024-01-08 21:50:11	Deep Dive
CVE-2023-47644	WordPress ProfileGrid Plugin <= 5.6.6 is vulnerable to Cross Site Request Forgery (CSRF)	profilegrid	ProfileGrid – User Profiles, Memberships, Groups and Communities	Medium	5.4	2023-11-18 21:31:40	Deep Dive

Goal Reached Thanks to every supporter — we hit 100%!

Vulnerability List