Medium severity4.2NVD Advisory· Published Oct 11, 2022· Updated Jun 17, 2026
CVE-2021-36915
CVE-2021-36915
Description
Cross-Site Request Forgery (CSRF) vulnerability in Cozmoslabs Profile Builder plugin <= 3.6.0 at WordPress allows uploading the JSON file and updating the options. Requires Import and Export add-on.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- Range: <=3.6.0
- Range: <=3.6.0
- Cozmoslabs/Profile Builder – User Profile & User Registration Forms (WordPress plugin)v5Range: <= 3.6.0
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.