Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

revmakx — Vulnerabilities & Security Advisories 14

Browse all 14 CVE security advisories affecting revmakx. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Revmakx develops enterprise software solutions for supply chain management and logistics operations. Historically, the product has been vulnerable to multiple remote code execution flaws, cross-site scripting attacks, and privilege escalation vulnerabilities, accounting for its 14 CVEs. Security researchers have identified authentication bypass issues and insecure direct object references in its web interface. While no major public security incidents have been documented, the consistent pattern of vulnerabilities suggests potential risks for organizations relying on this platform. The software's complex integration with third-party logistics systems may expand its attack surface, requiring robust hardening measures to mitigate exploitation risks.

Top products by revmakx: Backup and Staging by WP Time Capsule InfiniteWP Client WPCal.io – Easy Meeting Scheduler WP Duplicate DefendWP Firewall WPCal.io WP Duplicate – WordPress Migration Plugin
CVE IDTitleCVSSSeverityPublished
CVE-2026-1499 WP Duplicate <= 1.1.8 - Authenticated (Subscriber+) Arbitrary File Upload via 'process_add_site' AJAX Action — WP Duplicate – WordPress Migration PluginCWE-862 8.8 High2026-02-06
CVE-2025-66103 WordPress WPCal.io plugin <= 0.9.5.9 - Cross Site Scripting (XSS) vulnerability — WPCal.ioCWE-79 6.5 Medium2025-12-30
CVE-2025-47477 WordPress Backup and Staging by WP Time Capsule plugin <= 1.22.23 - Reflected Cross Site Scripting (XSS) vulnerability — Backup and Staging by WP Time CapsuleCWE-79 7.1 High2025-06-09
CVE-2025-22280 WordPress DefendWP Firewall Plugin <= 1.1.0 - Broken Access Control vulnerability — DefendWP FirewallCWE-862 7.6 High2025-02-27
CVE-2025-24652 WordPress WP Duplicate plugin <= 1.1.6 - Broken Access Control vulnerability — WP DuplicateCWE-862 5.4 Medium2025-01-24
CVE-2024-10585 InfiniteWP Client <= 1.13.0 - Unauthenticated Limited Directory Traversal to Arbitrary .txt File Reading — InfiniteWP ClientCWE-22 5.3 Medium2025-01-08
CVE-2024-8856 Backup and Staging by WP Time Capsule <= 1.22.21 - Unauthenticated Arbitrary File Upload — Backup and Staging by WP Time CapsuleCWE-434 9.8 Critical2024-11-16
CVE-2024-49684 WordPress Backup and Staging by WP Time Capsule plugin <= 1.22.21 - PHP Object Injection vulnerability — Backup and Staging by WP Time CapsuleCWE-502 7.2 High2024-10-23
CVE-2024-48020 WordPress Backup and Staging by WP Time Capsule plugin <= 1.22.21 - SQL Injection vulnerability — Backup and Staging by WP Time CapsuleCWE-89 8.5 High2024-10-11
CVE-2024-38770 WordPress Backup and Staging by WP Time Capsule plugin <= 1.22.20 - Authentication Bypass and Privilege Escalation Vulnerability — Backup and Staging by WP Time CapsuleCWE-269 9.8 Critical2024-08-01
CVE-2024-34816 WordPress WPCal.io plugin <= 0.9.5.8 - Cross Site Request Forgery (CSRF) vulnerability — WPCal.io – Easy Meeting SchedulerCWE-352 5.4 Medium2024-05-10
CVE-2024-32795 WordPress WPCal.io <= 0.9.5.8 - Cross Site Request Forgery (CSRF) vulnerability — WPCal.io – Easy Meeting SchedulerCWE-352 4.3 Medium2024-04-24
CVE-2023-6565 InfiniteWP Client <= 1.12.3 - Unauthenticated Sensitive Information Exposure — InfiniteWP ClientCWE-922 5.9 Medium2024-02-20
CVE-2023-2916 InfiniteWP Client <= 1.11.1 - Authenticated (Subscriber+) Sensitive Information Exposure — InfiniteWP ClientCWE-200 7.5 High2023-08-15

This page lists every published CVE security advisory associated with revmakx. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.