cleantalk
Vulnerabilities and Security Researches

IS-theme-companion, CVE-2025-53277

CVE, Research URL

CVE-2025-53277

Home page URL

Security reports for IS-theme-companion

Application

IS-theme-companion

Published on
Jun 27, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Infigo Software IS-theme-companion allows Object Injection. This issue affects IS-theme-companion: from n/a through 1.57.
Affected versions
Min -, max 1.57.
Status
vulnerable
Previous vulnerability researches
Amazon Products to WooCommerce (CVE-2025-5813) , Jul 03, 2025
Amazon Products to WooCommerce (CVE-2025-5817) , Jul 04, 2025
New vulnerability
WP Map Block – Gutenberg Map Block for Google Map and OpenStreet Map (CVE-2025-5194) , Jul 04, 2025
Amazon Products to WooCommerce (CVE-2025-5817) , Jul 04, 2025
WP-Recall – Registration, Profile, Commerce & More (CVE-2025-49991) , Jul 04, 2025
WP-Recall – Registration, Profile, Commerce & More (CVE-2025-52796) , Jul 04, 2025
Navayan Subscribe (CVE-2025-53311) , Jul 04, 2025