| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-3404 | ProfileGrid <= 5.5.0 - Hardcoded Encryption Key | metagauss | ProfileGrid – User Profiles, Groups and Communities | Medium | 4.9 | 2023-08-31 05:33:10 | Deep Dive |
| CVE-2023-3714 | ProfileGrid <= 5.5.2 - Missing Authorization to Arbitrary Group Option Modification and Privilege Escalation | metagauss | ProfileGrid – User Profiles, Groups and Communities | High | 7.5 | 2023-07-18 02:39:26 | Deep Dive |
| CVE-2023-3403 | ProfileGrid <= 5.5.1 - Missing Authorization to User Import | metagauss | ProfileGrid – User Profiles, Groups and Communities | Medium | 5.4 | 2023-07-18 02:39:26 | Deep Dive |
| CVE-2023-3713 | ProfileGrid <= 5.5.1 - Authenticated (Subscriber+) Arbitrary Option Update | metagauss | ProfileGrid – User Profiles, Groups and Communities | High | 8.8 | 2023-07-18 02:39:25 | Deep Dive |
| CVE-2023-0940 | ProfileGrid < 5.3.1 - Subscriber+ Arbitrary Password Reset | Unknown | ProfileGrid | 高危 | - | 2023-03-20 15:52:17 | Deep Dive |
| CVE-2022-41791 | WordPress ProfileGrid plugin <= 5.1.6 - Auth. CSV Injection vulnerability | Profilegrid | ProfileGrid (WordPress plugin) | Medium | 6.5 | 2022-11-17 22:08:40 | Deep Dive |
| CVE-2022-3578 | ProfileGrid < 5.1.1 - Reflected Cross-Site Scripting | Unknown | ProfileGrid – User Profiles, Memberships, Groups and Communities | 中危 | - | 2022-11-14 00:00:00 | Deep Dive |
| CVE-2022-0233 | ProfileGrid – User Profiles, Memberships, Groups and Communities <= 4.7.4 Authenticated Stored Cross-Site Scripting | ProfileGrid – User Profiles, Memberships, Groups and Communities | ProfileGrid – User Profiles, Memberships, Groups and Communities | Medium | 6.4 | 2022-01-18 16:52:28 | Deep Dive |