Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

RealMag777 — Vulnerabilities & Security Advisories 111

Browse all 111 CVE security advisories affecting RealMag777. AI-powered Chinese analysis, POCs, and references for each vulnerability.

realmag777 is a software vendor primarily known for developing and distributing e-commerce solutions and digital marketplace platforms. Historical security audits reveal a pattern of critical vulnerabilities, with 109 CVEs currently on record. The most prevalent flaw classes include Remote Code Execution (RCE) and Cross-Site Scripting (XSS), often stemming from insufficient input validation and improper sanitization of user-supplied data. Additionally, the software has frequently exhibited insecure direct object references and privilege escalation issues, allowing unauthorized users to access sensitive administrative functions or modify system configurations. These defects typically arise from legacy codebases that lack modern security controls and regular patching cycles. Major incidents have involved data breaches exposing customer personal information and payment details due to unpatched SQL injection flaws. The high volume of disclosed vulnerabilities suggests a reactive rather than proactive security posture, requiring immediate attention to code review processes and dependency management to mitigate ongoing risks for enterprise clients relying on this infrastructure.

Found 14 results / 111Clear Filters
Top products by RealMag777: BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net HUSKY – Products Filter Professional for WooCommerce WOLF – WordPress Posts Bulk Editor and Manager Professional MDTF BEAR WPCS – WordPress Currency Switcher Professional FOX – Currency Switcher Professional for WooCommerce Active Products Tables for WooCommerce. Use constructor to create tables WordPress Meta Data and Taxonomies Filter (MDTF) TableOn MDTF – Meta Data and Taxonomies Filter HUSKY WOLF Active Products Tables for WooCommerce InPost Gallery TableOn – WordPress Posts Table Filterable GMap Targeting FOX WPCS HUSKY – Products Filter for WooCommerce (formerly WOOF) Active Products Tables for WooCommerce. Professional products tables for WooCommerce store WOOCS – WooCommerce Currency Switcher WPCS - WordPress Currency Switcher Taxonomy Chain Menu HUSKY – Products Filter for WooCommerce Professional WordPress Meta Data Filter & Taxonomies Filter
CVE IDTitleCVSSSeverityPublished
CVE-2026-1672 BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net <= 1.1.5 - Cross-Site Request Forgery to Product Data Modification — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-352 6.5 Medium2026-04-08
CVE-2026-1673 BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net <= 1.1.5 - Cross-Site Request Forgery to Taxonomy Term Deletion — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-352 4.3 Medium2026-04-08
CVE-2024-24834 WordPress BEAR Plugin <= 1.1.4 is vulnerable to Cross Site Scripting (XSS) — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-79 5.9 Medium2024-02-08
CVE-2023-4941 BEAR <= 1.1.3.3 - Missing Authorization to Product Manipulation — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-862 4.3 Medium2023-10-20
CVE-2023-4926 BEAR <= 1.1.3.3 - Cross-Site Request Forgery to Product Deletion — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-352 5.4 Medium2023-10-20
CVE-2023-4924 BEAR <= 1.1.3.3 - Missing Authorization to Product Deletion — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-352 5.4 Medium2023-10-20
CVE-2023-4923 BEAR <= 1.1.3.3 - Cross-Site Request Forgery to Product Deletion — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-352 5.4 Medium2023-10-20
CVE-2023-4935 BEAR <= 1.1.3.3 - Cross-Site Request Forgery to Profile Creation — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-352 4.3 Medium2023-10-20
CVE-2023-4920 BEAR <= 1.1.3.3 - Cross-Site Request Forgery to Stored Cross-Site Scripting — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-352 4.3 Medium2023-10-20
CVE-2023-4937 BEAR <= 1.1.3.3 - Cross-Site Request Forgery to Product Manipulation — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-352 4.3 Medium2023-10-20
CVE-2023-4940 BEAR <= 1.1.3.3 - Cross-Site Request Forgery to Product Manipulation — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-352 4.3 Medium2023-10-20
CVE-2023-4943 BEAR <= 1.1.3.3 - Missing Authorization to Product Manipulation — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-862 4.3 Medium2023-10-20
CVE-2023-4942 BEAR <= 1.1.3.3 - Cross-Site Request Forgery to Product Manipulation — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-352 4.3 Medium2023-10-20
CVE-2023-4938 BEAR <= 1.1.3.3 - Missing Authorization to Product Manipulation — BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.NetCWE-862 4.3 Medium2023-10-18

This page lists every published CVE security advisory associated with RealMag777. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.