cleantalk
Vulnerabilities and Security Researches

Infility Global, CVE-2025-52774

CVE, Research URL

CVE-2025-52774

Home page URL

Security reports for Infility Global

Application

Infility Global

Published on
Jun 27, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Infility Infility Global allows Reflected XSS. This issue affects Infility Global: from n/a through 2.12.7.
Affected versions
Min -, max 2.12.7.
Status
vulnerable
Previous vulnerability researches
UpStream: a Project Management Plugin for WordPress (CVE-2025-49974) , Jul 02, 2025
New vulnerability
Smart Docs (CVE-2025-6787) , Jul 05, 2025
Change Cart button Colors WooCommerce (CVE-2025-52783) , Jul 05, 2025
Contact Form 7 Database Addon – CFDB7 (CVE-2025-6740) , Jul 05, 2025
Magic Buttons for Elementor (CVE-2025-6687) , Jul 05, 2025
Magic Buttons for Elementor (CVE-2025-6686) , Jul 05, 2025