High severity7.1NVD Advisory· Published Sep 26, 2025· Updated Apr 23, 2026
CVE-2025-4957
CVE-2025-4957
Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-and-communities allows Reflected XSS.This issue affects ProfileGrid : from n/a through <= 5.9.5.7.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=5.9.5.7
- Range: <=5.9.5.7
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.