Browse all 109 CVE security advisories affecting RealMag777. AI-powered Chinese analysis, POCs, and references for each vulnerability.
realmag777 is a software vendor primarily known for developing and distributing e-commerce solutions and digital marketplace platforms. Historical security audits reveal a pattern of critical vulnerabilities, with 109 CVEs currently on record. The most prevalent flaw classes include Remote Code Execution (RCE) and Cross-Site Scripting (XSS), often stemming from insufficient input validation and improper sanitization of user-supplied data. Additionally, the software has frequently exhibited insecure direct object references and privilege escalation issues, allowing unauthorized users to access sensitive administrative functions or modify system configurations. These defects typically arise from legacy codebases that lack modern security controls and regular patching cycles. Major incidents have involved data breaches exposing customer personal information and payment details due to unpatched SQL injection flaws. The high volume of disclosed vulnerabilities suggests a reactive rather than proactive security posture, requiring immediate attention to code review processes and dependency management to mitigate ongoing risks for enterprise clients relying on this infrastructure.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-67990 | WordPress GMap Targeting plugin <= 1.1.7 - Cross Site Scripting (XSS) vulnerability — GMap TargetingCWE-79 | 7.1 | High | 2026-02-20 |
| CVE-2025-52732 | WordPress Google Map Targeting Plugin <= 1.1.6 - Local File Inclusion Vulnerability — GMap TargetingCWE-98 | 8.8 | High | 2025-08-14 |
This page lists every published CVE security advisory associated with RealMag777. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.