ProfileGrid – User Profiles, Memberships, Groups and Communities <= 4.7.4 Authenticated Stored Cross-Site Scripting
CVE-2022-0233

6.4MEDIUM

Key Information:

Vendor
Wordpress
Status
Profilegrid – User Profiles, Memberships, Groups And Communities
Vendor
CVE Published:
18 January 2022

Summary

The ProfileGrid – User Profiles, Memberships, Groups and Communities WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the pm_user_avatar and pm_cover_image parameters found in the ~/admin/class-profile-magic-admin.php file which allows attackers with authenticated user access, such as subscribers, to inject arbitrary web scripts into their profile, in versions up to and including 1.2.7.

Affected Version(s)

ProfileGrid – User Profiles, Memberships, Groups and Communities 4.7.4

References

https://github.com/BigTiger2020/2022/blob/main/ProfileGri...
x_refsource_MISC
https://plugins.trac.wordpress.org/browser/profilegrid-us...
x_refsource_MISC
https://www.wordfence.com/vulnerability-advisories/#CVE-2...
x_refsource_MISC

CVSS V3.1

Score:
6.4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Big Tiger
.