Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now
Associated Vulnerability
Clear Filters
Found 25 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-2494 ProfileGrid <= 5.9.8.2 - Cross-Site Request Forgery to Group Membership Request Approval/Denial metagaussProfileGrid – User Profiles, Groups and Communities Medium 4.3 2026-03-07 01:21:22 Deep Dive
CVE-2026-2488 ProfileGrid <= 5.9.8.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Message Deletion metagaussProfileGrid – User Profiles, Groups and Communities Medium 4.3 2026-03-07 01:21:22 Deep Dive
CVE-2026-1271 ProfileGrid <= 5.9.7.2 - Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary User Profile and Cover Image Modification metagaussProfileGrid – User Profiles, Groups and Communities Medium 5.3 2026-02-05 09:13:45 Deep Dive
CVE-2025-13416 ProfileGrid – User Profiles, Groups and Communities <= 5.9.7.2 - Missing Authorization to Authenticated (Subscriber+) Arbitrary User Suspension metagaussProfileGrid – User Profiles, Groups and Communities Medium 4.3 2026-02-05 08:25:44 Deep Dive
CVE-2025-6977 ProfileGrid – User Profiles, Groups and Communities <= 5.9.5.4 - Reflected Cross-Site Scripting via 'pm_get_messenger_notification' function metagaussProfileGrid – User Profiles, Groups and Communities Medium 6.1 2025-07-16 04:24:03 Deep Dive
CVE-2025-1408 ProfileGrid – User Profiles, Groups and Communities <= 5.9.4.4 - Missing Authorinzation to Authenticated (Subscriber+) Join Group Requests Management metagaussProfileGrid – User Profiles, Groups and Communities Medium 4.3 2025-03-22 04:22:06 Deep Dive
CVE-2025-0724 ProfileGrid – User Profiles, Groups and Communities <= 5.9.4.5 - Authenticated (Subscriber+) PHP Object Injection metagaussProfileGrid – User Profiles, Groups and Communities High 8.8 2025-03-22 04:22:06 Deep Dive
CVE-2025-0723 ProfileGrid – User Profiles, Groups and Communities <= 5.9.4.7 - Authenticated (Subscriber+) SQL Injection metagaussProfileGrid – User Profiles, Groups and Communities Medium 6.5 2025-03-22 04:22:05 Deep Dive
CVE-2024-13740 ProfileGrid – User Profiles, Groups and Communities <= 5.9.4.2 - Insecure Direct Object Reference to Authenticated (Subscriber+) Private Messages Disclosure metagaussProfileGrid – User Profiles, Groups and Communities Medium 4.3 2025-02-18 02:06:01 Deep Dive
CVE-2024-13741 ProfileGrid – User Profiles, Groups and Communities <= 5.9.4.2 - Authenticated (Subscriber+) Limited Server-Side Request Forgery metagaussProfileGrid – User Profiles, Groups and Communities Medium 5.4 2025-02-18 01:44:01 Deep Dive
CVE-2024-10900 ProfileGrid – User Profiles, Groups and Communities <= 5.9.3.6 - Missing Authorization to Authenticated (Subscriber+) Arbitrary User Meta Deletion metagaussProfileGrid – User Profiles, Groups and Communities Medium 6.5 2024-11-20 06:42:54 Deep Dive
CVE-2024-37453 WordPress ProfileGrid – User Profiles, Groups and Communities plugin <= 5.8.7 - Broken Access Control vulnerability ProfileGrid User ProfilesProfileGrid Medium 4.3 2024-11-01 14:18:21 Deep Dive
CVE-2024-8861 ProfileGrid – User Profiles, Groups and Communities <= 5.9.3.2 - Authenticated (Contributor+) Stored Cross-Site Scripting metagaussProfileGrid – User Profiles, Groups and Communities Medium 6.4 2024-09-26 07:34:37 Deep Dive
CVE-2024-6410 ProfileGrid <= 5.8.9 - Authenticated (Subscriber+) Insecure Direct Object Reference metagaussProfileGrid – User Profiles, Groups and Communities Medium 4.3 2024-07-10 04:31:31 Deep Dive
CVE-2024-6411 ProfileGrid – User Profiles, Groups and Communities <= 5.8.9 - Authenticated (Subscriber+) Authorization Bypass to Privilege Escalation metagaussProfileGrid – User Profiles, Groups and Communities High 8.8 2024-07-10 04:31:30 Deep Dive
CVE-2024-5453 ProfileGrid <= 5.8.6 - Missing Authorization metagaussProfileGrid – User Profiles, Groups and Communities Medium 4.3 2024-06-05 07:34:56 Deep Dive
CVE-2024-3606 ProfileGrid – User Profiles, Memberships, Groups and Communities <= 5.8.3 - Missing Authorization metagaussProfileGrid – User Profiles, Groups and Communities Medium 4.3 2024-05-02 16:52:34 Deep Dive
CVE-2022-36352 WordPress ProfileGrid Plugin <= 5.0.3 is vulnerable to Broken Access Control ProfilegridProfileGrid – User Profiles, Memberships, Groups and Communities Medium 6.3 2024-01-08 21:50:11 Deep Dive
CVE-2023-47644 WordPress ProfileGrid Plugin <= 5.6.6 is vulnerable to Cross Site Request Forgery (CSRF) profilegridProfileGrid – User Profiles, Memberships, Groups and Communities Medium 5.4 2023-11-18 21:31:40 Deep Dive
CVE-2023-3404 ProfileGrid <= 5.5.0 - Hardcoded Encryption Key metagaussProfileGrid – User Profiles, Groups and Communities Medium 4.9 2023-08-31 05:33:10 Deep Dive