WP-Safety

Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More Security & Risk Analysis

wordpress.org/plugins/themeisle-companion

Add modules like share buttons, header & footer scripts, disable comments, reading progress bar, custom fonts, custom login page & more in one plugin.

100K active installs v3.0.5 PHP 7.4+ WP 5.3+ Updated Dec 10, 2025
cookie-noticeduplicate-pagelogin-customizershare-buttonssvg-support
83
B · Generally Safe
CVEs total20
Unpatched0
Last CVENov 3, 2025
Plugin page Download
Safety Verdict

Is Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More Safe to Use in 2026?

Mostly Safe

Score 83/100

Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More is generally safe to use. 20 past CVEs were resolved. Keep it updated.

20 known CVEsLast CVE: Nov 3, 2025Updated 3mo ago
Risk Assessment

The "themeisle-companion" v3.0.5 plugin presents a mixed security posture. On the positive side, it demonstrates good practices with 100% of SQL queries using prepared statements and 98% of outputs being properly escaped. The presence of numerous capability checks and a good number of nonce checks also suggests an effort towards securing various functionalities. However, there are significant areas of concern, particularly regarding its attack surface. The plugin exposes two AJAX handlers without any authentication checks, representing a direct pathway for unauthorized actions or information disclosure if not properly secured by other means. Additionally, while its REST API routes have permission callbacks, the static analysis doesn't confirm their effectiveness or robustness, which could still pose a risk.

The vulnerability history for this plugin is troubling, with a total of 20 known CVEs. The past presence of critical and high-severity vulnerabilities, including SSRF, XSS, missing authorization, and CSRF, indicates a pattern of code quality issues that have historically led to exploitable weaknesses. While there are currently no unpatched vulnerabilities, the recurring nature of these vulnerability types suggests a need for rigorous and ongoing security auditing. The bundled Guzzle v1.1 library is also a potential concern if it's an outdated version, which is common for older bundled libraries.

In conclusion, while "themeisle-companion" v3.0.5 shows some strengths in its defensive coding practices like prepared statements and output escaping, the lack of authentication on AJAX handlers and its historical vulnerability record are significant red flags. The potential for exploitation of unprotected entry points, combined with past critical and high-severity issues, necessitates a cautious approach and prompt investigation into the security of the unauthenticated AJAX handlers.

Key Concerns

  • AJAX handlers without authentication
  • 20 known CVEs in vulnerability history
  • Historical critical severity CVEs
  • Bundled library Guzzle v1.1 (potential outdated)
Vulnerabilities
20

Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More Security Vulnerabilities

CVEs by Year

1 CVE in 2018
2018
1 CVE in 2020
2020
1 CVE in 2021
2021
1 CVE in 2023
2023
10 CVEs in 2024
2024
6 CVEs in 2025
2025
Patched Has unpatched

Severity Breakdown

Critical
1
High
2
Medium
17

20 total CVEs

CVE-2025-12045medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Orbit Fox Companion <= 3.0.2 - Authenticated (Author+) Stored Cross-Site Scripting via Post Taxonomy

Nov 3, 2025 Patched in 3.0.3 (1d)
CVE-2025-10874medium · 6.4Server-Side Request Forgery (SSRF)

Orbit Fox by ThemeIsle <= 3.0.1 - Authenticated (Author+) Server-Side Request Forgery

Oct 3, 2025 Patched in 3.0.2 (27d)
CVE-2025-58593medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Orbit Fox by ThemeIsle <= 3.0.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

Sep 3, 2025 Patched in 3.0.1 (8d)
CVE-2025-22659medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Orbit Fox by ThemeIsle <= 2.10.44 - Authenticated (Contributor+) Stored Cross-Site Scripting

Feb 3, 2025 Patched in 2.10.45 (10d)
CVE-2024-13183medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Orbit Fox by ThemeIsle <= 2.10.43 - Authenticated (Contributor+) Stored Cross-Site Scripting via title_tag Parameter

Jan 9, 2025 Patched in 2.10.44 (1d)
CVE-2025-0311medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Orbit Fox by ThemeIsle <= 2.10.43 - Authenticated (Contributor+) Stored Cross-Site Scripting via Pricing Table Widget

Jan 9, 2025 Patched in 2.10.44 (1d)
CVE-2024-7778medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Orbit Fox by ThemeIsle <= 2.10.36 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload

Aug 21, 2024 Patched in 2.10.37 (1d)
CVE-2024-2484medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Orbit Fox by ThemeIsle <= 2.10.34 - Authenticated (Contributor+) Stored Cross-Site Scripting via Services and Post Type Grid Widgets

Jun 21, 2024 Patched in 2.10.35 (1d)
CVE-2024-2126medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Orbit Fox by ThemeIsle <= 2.10.32 - Authenticated (Contributor+) Stored Cross-Site Scripiting via Registration Form Widget

Mar 7, 2024 Patched in 2.10.33 (7d)
CVE-2024-1323medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Orbit Fox by ThemeIsle <= 2.10.30 - Authenticated (Contributor+) Stored Cross-Site Scripting

Feb 26, 2024 Patched in 2.10.32 (1d)
CVE-2024-1497medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Orbit Fox by ThemeIsle <= 2.10.30 - Authenticated (Contributor+) Stored Cross-Site Scripting via form widget addr2_width attribute

Feb 26, 2024 Patched in 2.10.31 (96d)
CVE-2024-1499medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Orbit Fox by ThemeIsle <= 2.10.30 - Authenticated (Contributor+) Stored Cross-Site Scripting

Feb 26, 2024 Patched in 2.10.31 (96d)
CVE-2024-1047medium · 5.3Missing Authorization

ThemeIsle SDK <= Various Versions - Missing Authorization

Feb 1, 2024 Patched in 2.10.29 (30d)
CVE-2024-1162medium · 4.3Cross-Site Request Forgery (CSRF)

Orbit Fox by ThemeIsle <= 2.10.29 - Cross-Site Request Forgery

Feb 1, 2024 Patched in 2.10.230 (1d)
CVE-2024-0508medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Orbit Fox by ThemeIsle <= 2.10.27 - Authenticated(Contributor+) Stored Cross-site Scripting via Pricing Table Elementor Widget

Jan 15, 2024 Patched in 2.10.28 (197d)
CVE-2023-6781medium · 6.4Improper Input Validation

Orbit Fox Companion <= 2.10.26 - Authenticated (Contributor+) Stored Cross-Site Scripting via custom fields

Jan 5, 2024 Patched in 2.10.27 (207d)
CVE-2023-2287high · 7.4Server-Side Request Forgery (SSRF)

Orbit Fox by ThemeIsle <= 2.10.23 - Authenticated (Author+) Server-Side Request Forgery via URL

Apr 27, 2023 Patched in 2.10.24 (271d)
CVE-2021-24157medium · 6.4Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Orbit Fox by ThemeIsle <= 2.10.2 - Authenticated (Contributor+) Stored Cross Site Scripting

Jan 12, 2021 Patched in 2.10.3 (1106d)
CVE-2021-24158critical · 9.9Improper Privilege Management

Orbit Fox by ThemeIsle <= 2.10.2 - Authenticated Privilege Escalation

Nov 24, 2020 Patched in 2.10.3 (1155d)
WF-f53e5192-e809-400c-aed9-36b5d6415a9d-themeisle-companionhigh · 7.3Missing Authorization

Orbit Fox by ThemeIsle <= 2.6.3 - Improper REST Capabilities Checks

Nov 12, 2018 Patched in 2.6.4 (1898d)
Code Analysis
Analyzed Mar 16, 2026

Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More Code Analysis

Dangerous Functions
0
Raw SQL Queries
0
0 prepared
Unescaped Output
36
1589 escaped
Nonce Checks
7
Capability Checks
32
File Operations
2
External Requests
5
Bundled Libraries
1

Bundled Libraries

Guzzle1.1

Output Escaping

98% escaped1625 total outputs
Attack Surface
2 unprotected

Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More Attack Surface

Entry Points4
Unprotected2

AJAX Handlers 2

authwp_ajax_obfx_update_module_optionscore\includes\class-orbit-fox.php:187
authwp_ajax_obfx_update_module_active_statuscore\includes\class-orbit-fox.php:188

REST API Routes 2

GET/wp-json/obfx/toggle-module-statecore\app\class-orbit-fox-admin.php:63
GET/wp-json/obfx/set-module-settingscore\app\class-orbit-fox-admin.php:74
WordPress Hooks 215
actioninitcore\app\abstract\class-orbit-fox-module-abstract.php:188
actionobfx_admin_enqueue_stylescore\app\abstract\class-orbit-fox-module-abstract.php:506
actionobfx_admin_enqueue_scriptscore\app\abstract\class-orbit-fox-module-abstract.php:507
actionobfx_public_enqueue_stylescore\app\abstract\class-orbit-fox-module-abstract.php:509
actionobfx_public_enqueue_scriptscore\app\abstract\class-orbit-fox-module-abstract.php:510
actionrest_api_initcore\app\class-orbit-fox-admin.php:56
actionadmin_noticescore\includes\class-orbit-fox-neve-dropin.php:49
actionadmin_initcore\includes\class-orbit-fox-neve-dropin.php:50
actionplugins_loadedcore\includes\class-orbit-fox.php:115
actionorbit_fox_modulescore\includes\class-orbit-fox.php:144
actionadmin_initcore\includes\class-orbit-fox.php:180
actionadmin_initcore\includes\class-orbit-fox.php:181
actionadmin_menucore\includes\class-orbit-fox.php:182
actionadmin_noticescore\includes\class-orbit-fox.php:183
actionobfx_recommended_pluginscore\includes\class-orbit-fox.php:184
actionadmin_enqueue_scriptscore\includes\class-orbit-fox.php:185
actionadmin_enqueue_scriptscore\includes\class-orbit-fox.php:186
actionwp_enqueue_scriptscore\includes\class-orbit-fox.php:192
actionwp_enqueue_scriptscore\includes\class-orbit-fox.php:193
actioninitcore\includes\class-orbit-fox.php:195
filterthemeisle_sdk_blackfriday_datacore\includes\class-orbit-fox.php:197
filterneve_enable_licensercore\includes\class-orbit-fox.php:201
filterhestia_enable_licensercore\includes\class-orbit-fox.php:202
filterorfeo_enable_licensercore\includes\class-orbit-fox.php:203
filterfagri_enable_licensercore\includes\class-orbit-fox.php:204
filtercapri_lite_enable_licensercore\includes\class-orbit-fox.php:205
filterbelise_lite_enable_licensercore\includes\class-orbit-fox.php:206
filterthemotion_lite_enable_licensercore\includes\class-orbit-fox.php:207
filtercapri_lite_enable_licensercore\includes\class-orbit-fox.php:208
filtervisualizer_enable_licensercore\includes\class-orbit-fox.php:209
filterwp_product_review_enable_licensercore\includes\class-orbit-fox.php:210
filterfeedzy_rss_feeds_licensercore\includes\class-orbit-fox.php:211
actionfl_builder_control_obfx_numberobfx_modules\beaver-widgets\custom-fields\number-field\number_field.php:18
actionwp_enqueue_scriptsobfx_modules\beaver-widgets\custom-fields\number-field\number_field.php:30
actionfl_builder_control_obfx_toggleobfx_modules\beaver-widgets\custom-fields\toggle-field\toggle_field.php:31
actionwp_enqueue_scriptsobfx_modules\beaver-widgets\custom-fields\toggle-field\toggle_field.php:44
actioninitobfx_modules\beaver-widgets\init.php:71
actioninitobfx_modules\beaver-widgets\init.php:72
actioncustomize_registerobfx_modules\companion-legacy\inc\hestia\inc\customizer.php:60
actioncustomize_registerobfx_modules\companion-legacy\inc\hestia\inc\features\feature-clients-bar-section.php:90
actioncustomize_registerobfx_modules\companion-legacy\inc\hestia\inc\features\feature-clients-bar-section.php:115
actioncustomize_registerobfx_modules\companion-legacy\inc\hestia\inc\features\feature-features-section.php:128
actioncustomize_registerobfx_modules\companion-legacy\inc\hestia\inc\features\feature-features-section.php:154
actioncustomize_registerobfx_modules\companion-legacy\inc\hestia\inc\features\feature-ribbon-section.php:146
actioncustomize_registerobfx_modules\companion-legacy\inc\hestia\inc\features\feature-team-section.php:128
actioncustomize_registerobfx_modules\companion-legacy\inc\hestia\inc\features\feature-team-section.php:155
actioncustomize_registerobfx_modules\companion-legacy\inc\hestia\inc\features\feature-testimonials-section.php:127
actioncustomize_registerobfx_modules\companion-legacy\inc\hestia\inc\features\feature-testimonials-section.php:154
actionafter_switch_themeobfx_modules\companion-legacy\inc\hestia\inc\features\import-zerif-content.php:25
actionhestia_sectionsobfx_modules\companion-legacy\inc\hestia\inc\sections\hestia-clients-bar-section.php:103
actionafter_setup_themeobfx_modules\companion-legacy\inc\hestia\inc\sections\hestia-clients-bar-section.php:105
actionhestia_sectionsobfx_modules\companion-legacy\inc\hestia\inc\sections\hestia-features-section.php:251
actionafter_setup_themeobfx_modules\companion-legacy\inc\hestia\inc\sections\hestia-features-section.php:253
actionhestia_sectionsobfx_modules\companion-legacy\inc\hestia\inc\sections\hestia-ribbon-section.php:119
actionhestia_sectionsobfx_modules\companion-legacy\inc\hestia\inc\sections\hestia-team-section.php:403
actionafter_setup_themeobfx_modules\companion-legacy\inc\hestia\inc\sections\hestia-team-section.php:405
actionhestia_sectionsobfx_modules\companion-legacy\inc\hestia\inc\sections\hestia-testimonials-section.php:257
actionafter_setup_themeobfx_modules\companion-legacy\inc\hestia\inc\sections\hestia-testimonials-section.php:259
filterpage_attributes_dropdown_pages_argsobfx_modules\companion-legacy\inc\shop-isle\class-template-loader.php:37
filtertheme_page_templatesobfx_modules\companion-legacy\inc\shop-isle\class-template-loader.php:43
filterwp_insert_post_dataobfx_modules\companion-legacy\inc\shop-isle\class-template-loader.php:49
filtertemplate_includeobfx_modules\companion-legacy\inc\shop-isle\class-template-loader.php:55
actionplugins_loadedobfx_modules\companion-legacy\inc\shop-isle\class-template-loader.php:129
actioncustomize_registerobfx_modules\companion-legacy\inc\shop-isle\customizer.php:458
actioncustomize_registerobfx_modules\companion-legacy\inc\shop-isle\customizer.php:559
filtershop-isle-subheaderobfx_modules\companion-legacy\inc\shop-isle\functions.php:19
actionshop-isle-about-page-after-contentobfx_modules\companion-legacy\inc\shop-isle\functions.php:41
actionadmin_enqueue_scriptsobfx_modules\companion-legacy\inc\zerif-lite\widgets\widget-clients.php:29
actionadmin_enqueue_scriptsobfx_modules\companion-legacy\inc\zerif-lite\widgets\widget-focus.php:28
actionadmin_enqueue_scriptsobfx_modules\companion-legacy\inc\zerif-lite\widgets\widget-team.php:29
actionadmin_enqueue_scriptsobfx_modules\companion-legacy\inc\zerif-lite\widgets\widget-testimonial.php:29
actionwidgets_initobfx_modules\companion-legacy\init.php:317
actionafter_setup_themeobfx_modules\companion-legacy\init.php:321
actionafter_setup_themeobfx_modules\companion-legacy\init.php:322
actionwp_enqueue_scriptsobfx_modules\companion-legacy\init.php:323
filterhestia_clients_bar_default_contentobfx_modules\companion-legacy\init.php:324
filterhestia_top_bar_alignment_defaultobfx_modules\companion-legacy\init.php:325
actioncustomize_registerobfx_modules\companion-legacy\init.php:326
actionafter_switch_themeobfx_modules\companion-legacy\init.php:327
actionafter_setup_themeobfx_modules\companion-legacy\init.php:331
filterhestia_clients_bar_default_contentobfx_modules\companion-legacy\init.php:332
filterhestia_top_bar_alignment_defaultobfx_modules\companion-legacy\init.php:333
actionwp_enqueue_scriptsobfx_modules\content-forms\form_manager.php:53
actionrest_api_initobfx_modules\content-forms\form_manager.php:56
actionrest_api_initobfx_modules\content-forms\includes\rest\server.php:18
filterfl_builder_register_settings_formobfx_modules\content-forms\includes\widgets-admin\beaver\beaver_widget_base.php:78
actionelementor/elements/categories_registeredobfx_modules\content-forms\includes\widgets-admin\elementor\elementor_widget_manager.php:29
actionelementor/widgets/widgets_registeredobfx_modules\content-forms\includes\widgets-admin\elementor\elementor_widget_manager.php:32
filterelementor/document/save/dataobfx_modules\content-forms\includes\widgets-admin\elementor\elementor_widget_manager.php:35
actionadmin_enqueue_scriptsobfx_modules\custom-fonts\init.php:77
actioninitobfx_modules\custom-fonts\init.php:80
actionadmin_menuobfx_modules\custom-fonts\init.php:81
actionadmin_headobfx_modules\custom-fonts\init.php:82
filtermanage_edit-obfx_custom_fonts_columnsobfx_modules\custom-fonts\init.php:83
actionobfx_custom_fonts_add_form_fieldsobfx_modules\custom-fonts\init.php:84
actionobfx_custom_fonts_edit_form_fieldsobfx_modules\custom-fonts\init.php:85
actionedited_obfx_custom_fontsobfx_modules\custom-fonts\init.php:86
actioncreate_obfx_custom_fontsobfx_modules\custom-fonts\init.php:87
filterupload_mimesobfx_modules\custom-fonts\init.php:88
filterwp_check_filetype_and_extobfx_modules\custom-fonts\init.php:89
filterwp_handle_upload_prefilterobfx_modules\custom-fonts\init.php:90
actionwp_headobfx_modules\custom-fonts\init.php:95
actioncustomize_controls_print_stylesobfx_modules\custom-fonts\init.php:96
actionenqueue_block_assetsobfx_modules\custom-fonts\init.php:98
filterneve_react_controls_localizationobfx_modules\custom-fonts\init.php:102
actiondelete_termobfx_modules\custom-fonts\init.php:105
filterfl_theme_system_fontsobfx_modules\custom-fonts\init.php:108
filterfl_builder_font_families_systemobfx_modules\custom-fonts\init.php:109
filterelementor/fonts/groupsobfx_modules\custom-fonts\init.php:112
filterelementor/fonts/additional_fontsobfx_modules\custom-fonts\init.php:113
filterobfx_get_custom_fonts_listobfx_modules\custom-fonts\init.php:116
actionadmin_initobfx_modules\disable-comments\init.php:78
actionadmin_menuobfx_modules\disable-comments\init.php:80
actionwp_before_admin_bar_renderobfx_modules\disable-comments\init.php:82
actioninitobfx_modules\disable-comments\init.php:84
actionwidgets_initobfx_modules\disable-comments\init.php:86
actionallowed_block_types_allobfx_modules\disable-comments\init.php:88
filtercomments_pre_queryobfx_modules\disable-comments\init.php:90
filtercomments_openobfx_modules\disable-comments\init.php:93
filterpings_openobfx_modules\disable-comments\init.php:95
filtercomments_arrayobfx_modules\disable-comments\init.php:97
filterget_comments_numberobfx_modules\disable-comments\init.php:99
filtershow_recent_comments_widget_styleobfx_modules\disable-comments\init.php:149
actionelementor/frontend/after_enqueue_stylesobfx_modules\elementor-extra-widgets\class-elementor-extra-widgets.php:34
actionelementor/frontend/after_register_scriptsobfx_modules\elementor-extra-widgets\class-elementor-extra-widgets.php:35
actionelementor/elements/categories_registeredobfx_modules\elementor-extra-widgets\class-elementor-extra-widgets.php:37
actionwidgets_initobfx_modules\elementor-extra-widgets\class-elementor-extra-widgets.php:39
actionwidgets_initobfx_modules\elementor-extra-widgets\class-elementor-extra-widgets.php:40
actionelementor/widgets/widgets_registeredobfx_modules\elementor-extra-widgets\class-elementor-extra-widgets.php:42
actionelementor/editor/after_enqueue_scriptsobfx_modules\elementor-extra-widgets\class-elementor-extra-widgets.php:44
actionelementor/editor/after_enqueue_stylesobfx_modules\elementor-extra-widgets\class-elementor-extra-widgets.php:48
actionsave_postobfx_modules\elementor-extra-widgets\widgets\woo\best-products.php:22
actiondeleted_postobfx_modules\elementor-extra-widgets\widgets\woo\best-products.php:23
actionswitch_themeobfx_modules\elementor-extra-widgets\widgets\woo\best-products.php:24
actionsave_postobfx_modules\elementor-extra-widgets\widgets\woo\featured-products.php:20
actiondeleted_postobfx_modules\elementor-extra-widgets\widgets\woo\featured-products.php:21
actionswitch_themeobfx_modules\elementor-extra-widgets\widgets\woo\featured-products.php:22
actionsave_postobfx_modules\elementor-extra-widgets\widgets\woo\popular-products.php:20
actiondeleted_postobfx_modules\elementor-extra-widgets\widgets\woo\popular-products.php:21
actionswitch_themeobfx_modules\elementor-extra-widgets\widgets\woo\popular-products.php:22
actionsave_postobfx_modules\elementor-extra-widgets\widgets\woo\products-categories.php:20
actiondeleted_postobfx_modules\elementor-extra-widgets\widgets\woo\products-categories.php:21
actionswitch_themeobfx_modules\elementor-extra-widgets\widgets\woo\products-categories.php:22
actionsave_postobfx_modules\elementor-extra-widgets\widgets\woo\recent-products.php:20
actiondeleted_postobfx_modules\elementor-extra-widgets\widgets\woo\recent-products.php:21
actionswitch_themeobfx_modules\elementor-extra-widgets\widgets\woo\recent-products.php:22
actionsave_postobfx_modules\elementor-extra-widgets\widgets\woo\sale-products.php:20
actiondeleted_postobfx_modules\elementor-extra-widgets\widgets\woo\sale-products.php:21
actionswitch_themeobfx_modules\elementor-extra-widgets\widgets\woo\sale-products.php:22
actionsave_postobfx_modules\elementor-extra-widgets\widgets\wp\eaw-posts-widget-plus.php:20
actiondeleted_postobfx_modules\elementor-extra-widgets\widgets\wp\eaw-posts-widget-plus.php:21
actionswitch_themeobfx_modules\elementor-extra-widgets\widgets\wp\eaw-posts-widget-plus.php:22
actionsave_postobfx_modules\elementor-extra-widgets\widgets\wp\eaw-posts-widget.php:20
actiondeleted_postobfx_modules\elementor-extra-widgets\widgets\wp\eaw-posts-widget.php:21
actionswitch_themeobfx_modules\elementor-extra-widgets\widgets\wp\eaw-posts-widget.php:22
actioninitobfx_modules\elementor-widgets\init.php:142
actionplugins_loadedobfx_modules\elementor-widgets\init.php:143
filterelementor/editor/localize_settingsobfx_modules\elementor-widgets\init.php:144
actionelementor/editor/before_enqueue_scriptsobfx_modules\elementor-widgets\init.php:145
actionelementor/editor/after_enqueue_scriptsobfx_modules\elementor-widgets\init.php:147
actionelementor/editor/after_enqueue_stylesobfx_modules\elementor-widgets\init.php:148
actionrest_api_initobfx_modules\google-analytics\init.php:93
actionwp_headobfx_modules\google-analytics\init.php:94
actioncustomize_registerobfx_modules\header-footer-scripts\init.php:97
actionadd_meta_boxesobfx_modules\header-footer-scripts\init.php:98
actionsave_postobfx_modules\header-footer-scripts\init.php:99
actionwp_headobfx_modules\header-footer-scripts\init.php:101
actionwp_footerobfx_modules\header-footer-scripts\init.php:102
filteradd_post_metadataobfx_modules\header-footer-scripts\init.php:108
filterupdate_post_metadataobfx_modules\header-footer-scripts\init.php:109
filteris_protected_metaobfx_modules\header-footer-scripts\init.php:110
actioninitobfx_modules\login-customizer\inc\class-obfx-login-security.php:41
filtersite_urlobfx_modules\login-customizer\inc\class-obfx-login-security.php:42
filterwp_redirectobfx_modules\login-customizer\inc\class-obfx-login-security.php:43
actionwp_loadedobfx_modules\login-customizer\inc\class-obfx-login-security.php:44
actionlogin_initobfx_modules\login-customizer\inc\class-obfx-login-security.php:45
actioninitobfx_modules\login-customizer\inc\class-obfx-login-security.php:49
actioncustomize_registerobfx_modules\login-customizer\init.php:108
actioncustomize_controls_enqueue_scriptsobfx_modules\login-customizer\init.php:109
actioncustomize_preview_initobfx_modules\login-customizer\init.php:110
actionlogin_enqueue_scriptsobfx_modules\login-customizer\init.php:111
filterlogin_headerurlobfx_modules\login-customizer\init.php:112
filterlogin_headertextobfx_modules\login-customizer\init.php:113
actioninitobfx_modules\login-customizer\init.php:114
actiontemplate_redirectobfx_modules\login-customizer\init.php:115
filtershake_error_codesobfx_modules\login-customizer\init.php:177
filterenable_login_autofocusobfx_modules\login-customizer\init.php:178
actionwp_footerobfx_modules\login-customizer\init.php:201
actionadmin_initobfx_modules\menu-icons\init.php:36
actionwp_update_nav_menu_itemobfx_modules\menu-icons\init.php:95
filterwp_edit_nav_menu_walkerobfx_modules\menu-icons\init.php:97
filterwp_setup_nav_menu_itemobfx_modules\menu-icons\init.php:98
filtermedia_view_stringsobfx_modules\mystock-import\init.php:102
actionupdate_option_wp_page_for_privacy_policyobfx_modules\policy-notice\init.php:151
actionwp_print_footer_scriptsobfx_modules\policy-notice\init.php:160
actionwp_print_footer_scriptsobfx_modules\policy-notice\init.php:161
actionwp_footerobfx_modules\policy-notice\init.php:162
filterpost_row_actionsobfx_modules\post-duplicator\init.php:79
filterpage_row_actionsobfx_modules\post-duplicator\init.php:80
actionadmin_action_duplicate_postobfx_modules\post-duplicator\init.php:83
actionadmin_initobfx_modules\post-duplicator\init.php:86
actionwp_footerobfx_modules\reading-progress-bar\init.php:58
filterkses_allowed_protocolsobfx_modules\social-sharing\init.php:179
filterhestia_filter_blog_social_iconsobfx_modules\social-sharing\init.php:182
actionwp_footerobfx_modules\social-sharing\init.php:185
filterupload_mimesobfx_modules\svg-uploads\init.php:80
filterwp_prepare_attachment_for_jsobfx_modules\svg-uploads\init.php:81
filterwp_handle_upload_prefilterobfx_modules\svg-uploads\init.php:82
filterwp_check_filetype_and_extobfx_modules\svg-uploads\init.php:83
filterwp_generate_attachment_metadataobfx_modules\svg-uploads\init.php:84
actionadmin_menuobfx_modules\template-directory\init.php:78
filterthemeisle_sdk_productsthemeisle-companion.php:77
filterthemeisle_companion_friendly_namethemeisle-companion.php:85
filterthemeisle_companion_load_promotionsthemeisle-companion.php:91
filterthemeisle_companion_about_us_metadatathemeisle-companion.php:97
Maintenance & Trust

Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More Maintenance & Trust

Maintenance Signals

WordPress version tested6.9.4
Last updatedDec 10, 2025
PHP min version7.4
Downloads13.6M

Community Trust

Rating96/100
Number of ratings317
Active installs100K
Alternatives

Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More Alternatives

Duplicate Page

Duplicate Page

duplicate-page

A
98

Duplicate Posts, Pages and Custom Posts easily using single click

3.0M 3 CVEs
Complianz – GDPR/CCPA Cookie Consent

Complianz – GDPR/CCPA Cookie Consent

complianz-gdpr

A
92

Configure your Cookie Banner, Cookie Consent and Cookie Policy with our Wizard and Cookies Scan.

1.0M 9 CVEs
CookieYes – Cookie Banner for Cookie Consent (Easy to setup GDPR/CCPA Compliant Cookie Notice)

CookieYes – Cookie Banner for Cookie Consent (Easy to setup GDPR/CCPA Compliant Cookie Notice)

cookie-law-info

A
100

Easily set up cookie banner or notice in WordPress, and policy pages for compliance with global cookie laws (GDPR, DSGVO, RGPD, CCPA/CPRA, etc).

1.0M 1 CVE
AddToAny Share Buttons

AddToAny Share Buttons

add-to-any

A
99

Share buttons for WordPress including the AddToAny button, Facebook, Bluesky, Mastodon, WhatsApp, Pinterest, Reddit, many more, and follow icons too.

300K 3 CVEs
Duplicate Post

Duplicate Post

copy-delete-posts

A
99

Duplicate post

300K 2 CVEs
Developer Profile

Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More Developer Profile

Themeisle

37 plugins · 2.2M total installs

76
trust score
Avg Security Score
96/100
Avg Patch Time
420 days
View full developer profile
Detection Fingerprints

How We Detect Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths
/wp-content/plugins/themeisle-companion/assets/css/admin.css/wp-content/plugins/themeisle-companion/assets/css/breadcrumbs.css/wp-content/plugins/themeisle-companion/assets/css/color-picker.css/wp-content/plugins/themeisle-companion/assets/css/color-scheme.css/wp-content/plugins/themeisle-companion/assets/css/frontend.css/wp-content/plugins/themeisle-companion/assets/css/gutenberg.css/wp-content/plugins/themeisle-companion/assets/css/otter-blocks.css/wp-content/plugins/themeisle-companion/assets/css/otter.css+14 more
Script Paths
/wp-content/plugins/themeisle-companion/assets/js/admin.js/wp-content/plugins/themeisle-companion/assets/js/breadcrumbs.js/wp-content/plugins/themeisle-companion/assets/js/color-picker.js/wp-content/plugins/themeisle-companion/assets/js/color-scheme.js/wp-content/plugins/themeisle-companion/assets/js/frontend.js/wp-content/plugins/themeisle-companion/assets/js/gutenberg.js+6 more
Version Parameters
themeisle-companion/assets/css/admin.css?ver=themeisle-companion/assets/css/breadcrumbs.css?ver=themeisle-companion/assets/css/color-picker.css?ver=themeisle-companion/assets/css/color-scheme.css?ver=themeisle-companion/assets/css/frontend.css?ver=themeisle-companion/assets/css/gutenberg.css?ver=themeisle-companion/assets/css/otter-blocks.css?ver=themeisle-companion/assets/css/otter.css?ver=themeisle-companion/assets/css/page-builder-integration.css?ver=themeisle-companion/assets/css/themeisle-companion-admin-styles.css?ver=themeisle-companion/assets/js/admin.js?ver=themeisle-companion/assets/js/breadcrumbs.js?ver=themeisle-companion/assets/js/color-picker.js?ver=themeisle-companion/assets/js/color-scheme.js?ver=themeisle-companion/assets/js/frontend.js?ver=themeisle-companion/assets/js/gutenberg.js?ver=themeisle-companion/assets/js/otter-blocks.js?ver=themeisle-companion/assets/js/otter.js?ver=themeisle-companion/assets/js/page-builder-integration.js?ver=themeisle-companion/assets/js/themeisle-companion-admin-scripts.js?ver=themeisle-companion/core/app/public/js/elementor-frontend.js?ver=themeisle-companion/core/app/public/js/themeisle-companion-frontend.js?ver=

HTML / DOM Fingerprints

CSS Classes
obfx-admin-wrapobfx-admin-sidebarobfx-admin-contentobfx-admin-headerobfx-settings-wrapobfx-field-wrapobfx-module-cardobfx-premium-module+1 more
HTML Comments
<!-- Plugin Name: Shop Isle Companion --><!-- Plugin URI: https://github.com/Codeinwp/shop-isle-companion --><!-- Description: Add a slider to the front page, add new sections to the about page template in Shop Isle. --><!-- Version: 1.0.8 -->+101 more
Data Attributes
data-obfx-iddata-obfx-module-slugdata-obfx-module-namedata-obfx-settingsdata-obfx-module-descriptiondata-obfx-module-beta
JS Globals
OrbitFox
FAQ

Frequently Asked Questions about Orbit Fox: Duplicate Page, Menu Icons, SVG Support, Cookie Notice, Custom Fonts & More