{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-27413", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "state": "PUBLISHED", "assignerShortName": "Patchstack", "dateReserved": "2026-02-19T09:52:22.262Z", "datePublished": "2026-03-19T05:28:13.373Z", "dateUpdated": "2026-04-03T10:08:53.821Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-04-03T10:08:53.821Z"}, "title": "WordPress Profile Builder Pro plugin < 3.14.0 - SQL Injection vulnerability", "problemTypes": [{"descriptions": [{"lang": "en", "cweId": "CWE-89", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')", "type": "CWE"}]}], "impacts": [{"capecId": "CAPEC-7", "descriptions": [{"lang": "en", "value": "CAPEC-7 Blind SQL Injection"}]}], "affected": [{"vendor": "Cozmoslabs", "product": "Profile Builder Pro", "versions": [{"status": "affected", "version": "n/a", "lessThan": "3.14.0", "changes": [{"at": "3.14.0", "status": "unaffected"}], "versionType": "custom"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozmoslabs Profile Builder Pro allows Blind SQL Injection.This issue affects Profile Builder Pro: from n/a before 3.14.0.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozmoslabs Profile Builder Pro allows Blind SQL Injection.<p>This issue affects Profile Builder Pro: from n/a before 3.14.0.</p>"}]}], "references": [{"url": "https://patchstack.com/database/wordpress/plugin/profile-builder-pro/vulnerability/wordpress-profile-builder-pro-plugin-3-13-9-sql-injection-vulnerability?_s_id=cve", "tags": ["vdb-entry"]}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "NONE", "scope": "CHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "availabilityImpact": "LOW", "baseSeverity": "CRITICAL", "baseScore": 9.3, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L"}}], "solutions": [{"lang": "en", "value": "Update the WordPress Profile Builder Pro plugin to the latest available version (at least 3.14.0).", "supportingMedia": [{"type": "text/html", "base64": false, "value": "Update the WordPress Profile Builder Pro plugin to the latest available version (at least 3.14.0)."}]}], "credits": [{"lang": "en", "value": "0xd4rk5id3 | Patchstack Bug Bounty Program", "user": "00000000-0000-4000-9000-000000000000", "type": "finder"}], "source": {"discovery": "EXTERNAL"}, "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-19T14:09:26.269768Z", "id": "CVE-2026-27413", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-19T14:09:59.369Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-27413", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-19T14:09:26.269768Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-19T14:09:52.409Z"}}], "cna": {"title": "WordPress Profile Builder Pro plugin < 3.14.0 - SQL Injection vulnerability", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "0xd4rk5id3 | Patchstack Bug Bounty Program"}], "impacts": [{"capecId": "CAPEC-7", "descriptions": [{"lang": "en", "value": "CAPEC-7 Blind SQL Injection"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 9.3, "attackVector": "NETWORK", "baseSeverity": "CRITICAL", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "LOW", "privilegesRequired": "NONE", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Cozmoslabs", "product": "Profile Builder Pro", "versions": [{"status": "affected", "changes": [{"at": "3.14.0", "status": "unaffected"}], "version": "n/a", "lessThan": "3.14.0", "versionType": "custom"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Update the WordPress Profile Builder Pro plugin to the latest available version (at least 3.14.0).", "supportingMedia": [{"type": "text/html", "value": "Update the WordPress Profile Builder Pro plugin to the latest available version (at least 3.14.0).", "base64": false}]}], "references": [{"url": "https://patchstack.com/database/wordpress/plugin/profile-builder-pro/vulnerability/wordpress-profile-builder-pro-plugin-3-13-9-sql-injection-vulnerability?_s_id=cve", "tags": ["vdb-entry"]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozmoslabs Profile Builder Pro allows Blind SQL Injection.This issue affects Profile Builder Pro: from n/a before 3.14.0.", "supportingMedia": [{"type": "text/html", "value": "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozmoslabs Profile Builder Pro allows Blind SQL Injection.<p>This issue affects Profile Builder Pro: from n/a before 3.14.0.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-89", "description": "CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-04-03T10:08:53.821Z"}}}, "cveMetadata": {"cveId": "CVE-2026-27413", "state": "PUBLISHED", "dateUpdated": "2026-04-03T10:08:53.821Z", "dateReserved": "2026-02-19T09:52:22.262Z", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "datePublished": "2026-03-19T05:28:13.373Z", "assignerShortName": "Patchstack"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozmoslabs Profile Builder Pro allows Blind SQL Injection.This issue affects Profile Builder Pro: from n/a before 3.14.0."}, {"lang": "es", "value": "Neutralizaci\u00f3n Incorrecta de Elementos Especiales utilizados en un Comando SQL ('Inyecci\u00f3n SQL') vulnerabilidad en Cozmoslabs Profile Builder Pro permite Inyecci\u00f3n SQL Ciega. Este problema afecta a Profile Builder Pro: desde n/a hasta 3.13.9."}], "id": "CVE-2026-27413", "lastModified": "2026-04-03T11:17:04.350", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 9.3, "baseSeverity": "CRITICAL", "confidentialityImpact": "HIGH", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 4.7, "source": "audit@patchstack.com", "type": "Secondary"}]}, "published": "2026-03-19T06:16:25.600", "references": [{"source": "audit@patchstack.com", "url": "https://patchstack.com/database/wordpress/plugin/profile-builder-pro/vulnerability/wordpress-profile-builder-pro-plugin-3-13-9-sql-injection-vulnerability?_s_id=cve"}], "sourceIdentifier": "audit@patchstack.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-89"}], "source": "audit@patchstack.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,3.13.9]"}}], "enrichment": {"confidence": 93.0, "confidence_source": "matching", "scores": [{"score": 93.0, "source": "matching"}]}, "original": {"product": "Profile Builder Pro", "source": "cna", "vendor": "Cozmoslabs"}, "product": "profile_builder", "vendor": "cozmoslabs"}, {"configurations": [{"platform": null, "status": "unaffected", "versions": null}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "product": "wordpress", "vendor": "wordpress"}], "analysis": {"en": {"generated_at": "2026-04-03T12:22:45.482378+00:00", "value": {"mitigation_remediation": ["Apply the latest plugin version (at least 3.14.0).", "If unable to update, disable or remove the Profile Builder Pro plugin from the site.", "Verify database integrity and check for unauthorized data access.", "Monitor web traffic and logs for signs of SQL injection attempts."], "summary": {"action": "Patch Immediately", "impact": "Blind SQL Injection leading to data compromise"}, "threat_synthesis": {"affected_systems": "All WordPress installations that use Cozmoslabs Profile Builder Pro version 3.13.9 or any earlier release are affected. The vulnerability applies to every instance of the plugin deployed before the 3.14.0 release.", "description_and_impact": "Improper neutralization of special elements in an SQL command allows the Profile Builder Pro plugin to be exploited via blind SQL injection. An attacker can manipulate input parameters to retrieve, modify, or delete data stored in the database, potentially exposing sensitive user information or enabling further compromise.", "risk_and_exploitability": "The CVSS score of 9.3 marks this flaw as critical, and while the EPSS score indicates a low probability of exploitation currently (<1%), the potential impact remains high. The exploit is performed through web interfaces provided by the plugin, likely requiring access to plugin forms or endpoints. Once an injection is successful, the attacker can extract or alter data, and, depending on database privileges, may achieve further lateral movement. The vulnerability is not listed in the CISA KEV catalog, so no known widespread exploitation has been reported yet."}}}}, "created": "2026-03-19T08:54:36.302121+00:00", "updated": "2026-04-03T21:18:16.346783+00:00", "vendors": ["cozmoslabs", "cozmoslabs$PRODUCT$profile_builder", "wordpress", "wordpress$PRODUCT$wordpress"]}