The ProfileGrid plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the profile_magic_check_smtp_connection function in versions up to, and including, 5.5.1. This makes it possible for authenticated attackers, with subscriber-level permissions or above to update the site options arbitrarily. This can be used by attackers to achieve privilege escalation.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Profilegrid | Metagauss | * | 5.5.1 (including) |