cleantalk
Vulnerabilities and Security Researches

Companion Auto Update, CVE-2018-20972

CVE, Research URL

CVE-2018-20972

Home page URL

Security reports for Companion Auto Update

Application

Companion Auto Update

Published on
Aug 17, 2019
Research Description
The companion-auto-update plugin before 3.2.1 for WordPress has CSRF.
Affected versions
Min -, max 3.2.1.
Status
vulnerable
Previous vulnerability researches
Companion Auto Update (CVE-2025-4369) , Jul 15, 2025
Companion Auto Update (CVE-2018-20973) , Jun 07, 2024
Companion Auto Update (CVE-2018-20972) , Jun 07, 2024
New vulnerability
The E-Commerce ERP: Purchasing, Inventory, Fulfillment, Manufacturing, BOM, Accounting, Sales Analysis (CVE-2025-52836) , Jul 15, 2025
Strong Testimonials (CVE-2025-7367) , Jul 15, 2025
Companion Auto Update (CVE-2025-4369) , Jul 15, 2025
Restrict File Access (CVE-2025-7667) , Jul 15, 2025
Product XML Feed Manager for WooCommerce – Google Shopping, Social Sites, Skroutz & More (CVE-2025-30959) , Jul 15, 2025