3 matches found
CVE-2025-0724
creationtimestamp| type| source ---|---|--- 2025-03-22 06:00:36+00:00| seen| Telegram/lKJR0gVbJMQmQvPZvyO2PQYEgFjbPQAZ3OktOvkr7WqN9Q 2025-03-22 06:48:25+00:00| seen| https://mastodon.social/users/CyberSignaler/statuses/114204744366284573 2025-03-22 07:38:44+00:00| seen|...
CVE-2025-0724
The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 5.9.4.5 via deserialization of untrusted input in the getusermetafieldshtml function. This makes it possible for authenticated attackers, with...
CVE-2025-0724 ProfileGrid – User Profiles, Groups and Communities <= 5.9.4.5 - Authenticated (Subscriber+) PHP Object Injection
The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 5.9.4.5 via deserialization of untrusted input in the getusermetafieldshtml function. This makes it possible for authenticated attackers, with...