SQL Injection Vulnerability in ProfileGrid by Metagauss
CVE-2025-47478
8.5HIGH
What is CVE-2025-47478?
An SQL injection vulnerability has been identified in ProfileGrid, a user profile and community management plugin by Metagauss. This flaw allows attackers to improperly manipulate SQL commands, potentially leading to unauthorized access to database information. The vulnerability impacts versions up to and including 5.9.5.0, making it crucial for users to update to the latest version to safeguard their applications against potential exploits.
Affected Version(s)
ProfileGrid 0 <= 5.9.5.0