Vulnerability Description
The ProfileGrid plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'edit_group' handler in versions up to, and including, 5.5.2. This makes it possible for authenticated attackers, with group ownership, to update group options, including the 'associate_role' parameter, which defines the member's role. This issue was partially patched in version 5.5.2 preventing privilege escalation, however, it was fully patched in 5.5.3.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Metagauss | Profilegrid | < 5.5.3 |
Related Weaknesses (CWE)
References
- https://plugins.trac.wordpress.org/browser/profilegrid-user-profiles-groups-and-Patch
- https://plugins.trac.wordpress.org/changeset/2938904/profilegrid-user-profiles-gPatch
- https://plugins.trac.wordpress.org/changeset/2939344/profilegrid-user-profiles-gPatch
- https://www.wordfence.com/threat-intel/vulnerabilities/id/a4766651-92a6-42c9-81bThird Party Advisory
- https://plugins.trac.wordpress.org/browser/profilegrid-user-profiles-groups-and-Patch
- https://plugins.trac.wordpress.org/changeset/2938904/profilegrid-user-profiles-gPatch
- https://plugins.trac.wordpress.org/changeset/2939344/profilegrid-user-profiles-gPatch
- https://www.wordfence.com/threat-intel/vulnerabilities/id/a4766651-92a6-42c9-81bThird Party Advisory
FAQ
What is CVE-2023-3714?
CVE-2023-3714 is a vulnerability with a CVSS score of 7.5 (HIGH). The ProfileGrid plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'edit_group' handler in versions up to, and including, 5.5.2. This make...
How severe is CVE-2023-3714?
CVE-2023-3714 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2023-3714?
Check the references section above for vendor advisories and patch information. Affected products include: Metagauss Profilegrid.