WordPress Plugin Vulnerabilities
ProfileGrid < 5.5.2 - Subscriber+ Arbitrary Option Update
Description
The plugin does not implement an adequate capability check on the 'profile_magic_check_smtp_connection' function, making it possible for authenticated users with subscriber-level permissions or above to arbitrarily update the site options, leading to potential privilege escalation.
Affects Plugins
Fixed in 5.5.2 References
Classification
Type
NO AUTHORISATION
OWASP top 10
CWE
CVSS
Miscellaneous
Original Researcher
Lana Codes
Verified
No
WPVDB ID
Timeline
Publicly Published
2023-07-17 (about 2 years ago)
Added
2023-07-18 (about 2 years ago)
Last Updated
2023-07-18 (about 2 years ago)
WPScan 