ProfileGrid

Missing Authorization to Authenticated (Subscriber+) Arbitrary User Meta Deletion vulnerability <= 5.9.3.6

6.5

19 November, 2024

Cross Site Request Forgery (CSRF) vulnerability <= 5.9.3

4.3

14 October, 2024

Authenticated (Contributor+) Stored CrossSite Scripting vulnerability <= 5.9.3.2

6.5

26 September, 2024

Authenticated (Subscriber+) Insecure Direct Object Reference vulnerability <= 5.8.9

4.3

10 July, 2024

Authenticated Privilege Escalation vulnerability <= 5.8.9

8.8

9 July, 2024