CVE-2022-0233

MEDIUM

ProfileGrid - XSS

Title source: llm

Description

The ProfileGrid – User Profiles, Memberships, Groups and Communities WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficient escaping via the pm_user_avatar and pm_cover_image parameters found in the ~/admin/class-profile-magic-admin.php file which allows attackers with authenticated user access, such as subscribers, to inject arbitrary web scripts into their profile, in versions up to and including 1.2.7.

References (3)

Core 3

Core References

Exploit, Third Party Advisory x_refsource_misc

https://github.com/BigTiger2020/2022/blob/main/ProfileGrid%20Xss.md

View Exploit ZIP pw:eip

Third Party Advisory x_refsource_misc

https://plugins.trac.wordpress.org/browser/profilegrid-user-profiles-groups-and-communities/tags/4.7.4/admin/class-profile-magic-admin.php#L961

Third Party Advisory x_refsource_misc

https://www.wordfence.com/vulnerability-advisories/#CVE-2022-0233

Scores

CVSS v3 6.4

EPSS 0.0030

EPSS Percentile 52.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-79

Status published

Products (1)

metagauss/profilegrid < 4.7.4

Published Jan 18, 2022

Tracked Since Feb 18, 2026