Known Vulnerabilities for products from Metagauss
Listed below are 18 of the newest known vulnerabilities associated with the vendor "Metagauss".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-32498 | Not Provided | 2026-03-25 | 2026-03-26 | |
| CVE-2026-25417 | Not Provided | 2026-03-25 | 2026-03-25 | |
| CVE-2026-25312 | Not Provided | 2026-03-19 | 2026-04-01 | |
| CVE-2026-24378 | Not Provided | 2026-03-25 | 2026-03-26 | |
| CVE-2026-24373 | Not Provided | 2026-03-25 | 2026-03-27 | |
| CVE-2025-69358 | Not Provided | 2026-03-25 | 2026-03-26 | |
| CVE-2025-52719 | Not Provided | 2025-06-20 | 2026-04-01 | |
| CVE-2025-49877 | Not Provided | 2025-06-17 | 2026-04-01 | |
| CVE-2025-49876 | Not Provided | 2025-07-16 | 2026-04-01 | |
| CVE-2025-49033 | Not Provided | 2025-08-14 | 2026-04-01 | |
| CVE-2025-24686 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Metagauss RegistrationM... | Not Provided | 2025-01-31 | 2026-04-01 |
| CVE-2024-49273 | Missing Authorization vulnerability in Metagauss ProfileGrid profilegrid-user-profiles-groups-and-communities.This issue aff... | Not Provided | 2024-10-21 | 2026-04-01 |
| CVE-2022-0420 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 7.2 - HIGH | 2022-03-07 | 2022-03-11 |
| CVE-2022-0233 | The ProfileGrid – User Profiles, Memberships, Groups and Communities WordPress plugin is vulnerable to Stored Cross-Site Sc... | 5.4 - MEDIUM | 2022-01-18 | 2022-01-24 |
| CVE-2022-0232 | The User Registration, Login & Landing Pages WordPress plugin is vulnerable to Stored Cross-Site Scripting due to insufficien... | 4.8 - MEDIUM | 2022-01-18 | 2022-01-24 |
| CVE-2021-25059 | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 4.3 - MEDIUM | 2022-11-28 | 2023-11-07 |
| CVE-2021-24862 | The RegistrationMagic WordPress plugin before 5.0.1.6 does not escape user input in its rm_chronos_ajax AJAX action before us... | 7.2 - HIGH | 2022-01-10 | 2022-02-04 |
| CVE-2021-24703 | The Download Plugin WordPress plugin before 1.6.1 does not have capability and CSRF checks in the dpwap_plugin_activate AJAX ... | 5.7 - MEDIUM | 2021-11-23 | 2022-10-24 |
| CVE-2021-24648 | The RegistrationMagic WordPress plugin before 5.0.1.9 does not sanitise and escape the rm_search_value parameter before outpu... | 6.1 - MEDIUM | 2022-02-01 | 2022-02-04 |
| CVE-2021-4073 | The RegistrationMagic WordPress plugin made it possible for unauthenticated users to log in as any site user, including admin... | 8.1 - HIGH | 2021-12-14 | 2022-01-21 |