cleantalk
Vulnerabilities and Security Researches

Infility Global, CVE-2025-52774

CVE, Research URL

CVE-2025-52774

Home page URL

Security reports for Infility Global

Application

Infility Global

Published on
Jun 27, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Infility Infility Global allows Reflected XSS. This issue affects Infility Global: from n/a through 2.12.7.
Affected versions
Min -, max 2.12.7.
Status
vulnerable
Previous vulnerability researches
Accept Stripe Payments Using Contact Form 7 (CVE-2024-12255) , Dec 13, 2024
Accept Stripe Payments Using Contact Form 7 (CVE-2025-53309) , Jul 03, 2025
New vulnerability
VikRentCar Car Rental Management System (CVE-2025-5322) , Jul 04, 2025
GoZen Forms (CVE-2025-6783) , Jul 04, 2025
GoZen Forms (CVE-2025-6782) , Jul 04, 2025
CSV Importer Improved (CVE-2025-50013) , Jul 04, 2025
WooCommerce PDF Invoice Builder, Create invoices, packing slips and more (CVE-2025-53203) , Jul 04, 2025