The ProfileGrid plugin for WordPress is vulnerable to unauthorized decryption of private information in versions up to, and including, 5.5.0. This is due to the passphrase and iv being hardcoded in the 'pm_encrypt_decrypt_pass' function and used across all sites running the plugin. This makes it possible for authenticated attackers, with administrator-level permissions or above to decrypt and view users' passwords. If combined with another vulnerability, this can potentially grant lower-privileged users access to users' passwords.
References
Configurations
History
07 Nov 2023, 04:18
| Type | Values Removed | Values Added |
|---|---|---|
| CWE |
01 Sep 2023, 20:52
| Type | Values Removed | Values Added |
|---|---|---|
| References | (MISC) https://plugins.trac.wordpress.org/browser/profilegrid-user-profiles-groups-and-communities/tags/5.4.8/includes/class-profile-magic-request.php#L325 - Patch | |
| References | (MISC) https://www.wordfence.com/threat-intel/vulnerabilities/id/6d490bfb-6560-428e-ad91-0f8d8bc9b1f2?source=cve - Third Party Advisory | |
| References | (MISC) https://plugins.trac.wordpress.org/changeset/2936383/profilegrid-user-profiles-groups-and-communities#file475 - Patch | |
| CPE | cpe:2.3:a:metagauss:profilegrid:*:*:*:*:*:wordpress:*:* | |
| First Time |
Metagauss
Metagauss profilegrid |
31 Aug 2023, 06:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-08-31 06:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-3404
Mitre link : CVE-2023-3404
CVE.ORG link : CVE-2023-3404
JSON object : View
Products Affected
metagauss
- profilegrid
CWE
No CWE.