ProfileGrid

Insecure Direct Object Reference to Authenticated (Subscriber+) Private Messages Disclosure vulnerability <= 5.9.4.2

4.3

4 days ago

Authenticated (Subscriber+) Limited ServerSide Request Forgery vulnerability <= 5.9.4.2

5.4

4 days ago

Missing Authorization to Authenticated (Subscriber+) Arbitrary User Meta Deletion vulnerability <= 5.9.3.6

6.5

19 November, 2024

Cross Site Request Forgery (CSRF) vulnerability <= 5.9.3

4.3

14 October, 2024

Authenticated (Contributor+) Stored CrossSite Scripting vulnerability <= 5.9.3.2

6.5

26 September, 2024