All 4 CVE vulnerabilities found in ProfileGrid – User Profiles, Memberships, Groups and Communities, with AI-generated Chinese analysis, references, and POCs.
Vendor: ProfileGrid – User Profiles, Memberships, Groups and Communities
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2022-36352 | WordPress ProfileGrid Plugin <= 5.0.3 is vulnerable to Broken Access Control CWE-862 | 6.3 | Medium | 2024-01-08 |
| CVE-2023-47644 | WordPress ProfileGrid Plugin <= 5.6.6 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352 | 5.4 | Medium | 2023-11-18 |
| CVE-2022-3578 | ProfileGrid < 5.1.1 - Reflected Cross-Site Scripting CWE-79 | 6.1 | - | 2022-11-14 |
| CVE-2022-0233 | ProfileGrid – User Profiles, Memberships, Groups and Communities <= 4.7.4 Authenticated Stored Cross-Site Scripting CWE-79 | 6.4 | Medium | 2022-01-18 |
All 4 known CVE vulnerabilities affecting ProfileGrid – User Profiles, Memberships, Groups and Communities with full Chinese analysis, references, and POCs where available.