cleantalk
Vulnerabilities and Security Researches

ProfileGrid – User Profiles, Memberships, Groups and Communities, CVE-2025-48079

CVE, Research URL

CVE-2025-48079

Home page URL

Security reports for ProfileGrid – User Profiles, Memberships, Groups and Communities

Application

ProfileGrid – User Profiles, Memberships, Groups and Communities

Published on
May 16, 2025
Research Description
Missing Authorization vulnerability in Metagauss ProfileGrid allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ProfileGrid : from n/a through 5.9.5.1.
Affected versions
Min -, max 5.9.5.2.
Status
vulnerable
Previous vulnerability researches
LetterPress – Elevate Your WordPress Site's E-Mail Campaigns and Marketing (CVE-2024-3590) , Jun 07, 2024
LetterPress – Elevate Your WordPress Site's E-Mail Campaigns and Marketing (CVE-2023-27415) , Jun 07, 2024
LetterPress – Elevate Your WordPress Site's E-Mail Campaigns and Marketing (CVE-2024-34568) , Jun 07, 2024
Ni Purchase Order(PO) For WooCommerce (CVE-2023-5957) , Jun 06, 2024
User registration & user profile – UserPlus (CVE-2023-0824) , Jun 07, 2024
New vulnerability
MultiVendorX Marketplace – WooCommerce MultiVendor Marketplace Solution (CVE-2025-4101) , May 18, 2025
WP Tabs – Responsive Tabs Plugin for WordPress (CVE-2025-48134) , May 18, 2025
Audio Comments Plugin (CVE-2025-4189) , May 18, 2025
WP Notes Widget (CVE-2025-48121) , May 18, 2025
Eventer (CVE-2025-39482) , May 18, 2025