Metagauss Profilegrid

24 CVEs affecting Metagauss Profilegrid. Latest disclosed: 2026-03-25. Critical: 1, High: 8.

Top CVEs affecting Metagauss Profilegrid
CVE	Severity	Score	Published	Summary
`CVE-2024-30490`	Critical	`9.3`	2024-03-29	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid.This issue affects ProfileGrid : fr…
`CVE-2025-26999`	High	`8.8`	2025-03-03	Deserialization of Untrusted Data vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-and-communities allows Object Injection.This issue a…
`CVE-2025-49033`	High	`8.5`	2025-08-14	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-a…
`CVE-2025-49876`	High	`8.5`	2025-07-16	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-a…
`CVE-2025-47478`	High	`8.5`	2025-05-23	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-a…
`CVE-2025-39586`	High	`8.5`	2025-04-17	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-a…
`CVE-2024-30491`	High	`8.5`	2024-03-29	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid.This issue affects ProfileGrid : fr…
`CVE-2024-30241`	High	`8.5`	2024-03-28	Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Metagauss ProfileGrid.This issue affects ProfileGrid : fr…
`CVE-2025-4957`	High	`7.1`	2025-09-26	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-a…
`CVE-2022-41791`	Medium	`6.8`	2022-11-17	Auth. (subscriber+) CSV Injection vulnerability in ProfileGrid plugin <= 5.1.6 on WordPress.
`CVE-2026-25417`	Medium	`6.5`	2026-03-25	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-a…
`CVE-2024-30513`	Medium	`6.5`	2024-03-29	Authorization Bypass Through User-Controlled Key vulnerability in Metagauss ProfileGrid.This issue affects ProfileGrid : from n/a through 5.7.2.
`CVE-2022-36352`	Medium	`6.3`	2024-01-08	Missing Authorization vulnerability in Profilegrid ProfileGrid – User Profiles, Memberships, Groups and Communities.This issue affects ProfileGrid – User Profi…
`CVE-2024-32808`	Medium	`5.4`	2024-04-24	Authorization Bypass Through User-Controlled Key vulnerability in Metagauss ProfileGrid.This issue affects ProfileGrid : from n/a through 5.7.9.
`CVE-2023-47644`	Medium	`5.4`	2023-11-18	Cross-Site Request Forgery (CSRF) vulnerability in profilegrid ProfileGrid – User Profiles, Memberships, Groups and Communities.This issue affects ProfileGrid…
`CVE-2025-49877`	Medium	`4.9`	2025-06-17	Server-Side Request Forgery (SSRF) vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-and-communities allows Server Side Request Forgery…
`CVE-2025-52719`	Medium	`4.3`	2025-06-20	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-and-communi…
`CVE-2025-48079`	Medium	`4.3`	2025-05-16	Missing Authorization vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-and-communities allows Exploiting Incorrectly Configured Access…
`CVE-2024-49273`	Medium	`4.3`	2024-10-21	Missing Authorization vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-and-communities.This issue affects ProfileGrid : from n/a throug…
`CVE-2023-52117`	Medium	`4.3`	2024-06-12	Missing Authorization vulnerability in Metagauss ProfileGrid.This issue affects ProfileGrid: from n/a through 5.6.6.