CVE-2023-3404

MEDIUM 4.9

ProfileGrid <= 5.5.0 - Hardcoded Encryption Key

CVSS Score

4.9

EPSS Score

0.0%

EPSS Percentile

0th

The ProfileGrid plugin for WordPress is vulnerable to unauthorized decryption of private information in versions up to, and including, 5.5.0. This is due to the passphrase and iv being hardcoded in the 'pm_encrypt_decrypt_pass' function and used across all sites running the plugin. This makes it possible for authenticated attackers, with administrator-level permissions or above to decrypt and view users' passwords. If combined with another vulnerability, this can potentially grant lower-privileged users access to users' passwords.

CWE	CWE-321
Vendor	metagauss
Product	profilegrid – user profiles, groups and communities
Published	Aug 31, 2023
Last Updated	Apr 8, 2026

Stay Ahead of the Next One

Get instant alerts for metagauss profilegrid – user profiles, groups and communities

Be the first to know when new medium vulnerabilities affecting metagauss profilegrid – user profiles, groups and communities are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality

Integrity

Availability

Affected Versions

metagauss / ProfileGrid – User Profiles, Groups and Communities

0 ≤ 5.5.0

References

NVD ↗ CVE.org ↗ EPSS Data ↗

wordfence.com: https://www.wordfence.com/threat-intel/vulnerabilities/id/6d490bfb-6560-428e-ad91-0f8d8bc9b1f2?source=cve plugins.trac.wordpress.org: https://plugins.trac.wordpress.org/browser/profilegrid-user-profiles-groups-and-communities/tags/5.4.8/includes/class-profile-magic-request.php#L325 plugins.trac.wordpress.org: https://plugins.trac.wordpress.org/changeset/2936383/profilegrid-user-profiles-groups-and-communities#file475

Credits

István Márton