Sign in Get started

← All advisories

Medium severity4.3NVD Advisory· Published Apr 7, 2024· Updated Apr 28, 2026

CVE-2024-31291

CVE-2024-31291

Description

Authorization Bypass Through User-Controlled Key vulnerability in Metagauss ProfileGrid.This issue affects ProfileGrid : from n/a through 5.7.6.

Affected products

1

Metagauss/Profilegrid
cpe:2.3:a:metagauss:profilegrid:*:*:*:*:*:wordpress:*:*
Range: <5.7.7

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

patchstack.com/database/vulnerability/profilegrid-user-profiles-groups-and-communities/wordpress-profilegrid-plugin-5-7-6-idor-on-friend-request-vulnerabilitynvdThird Party Advisory

News mentions

0

No linked articles in our index yet.