top of page
perceptive_background_267k.jpg

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in RealMag777 Active Products Tables for WooCommerce profit-p…

Published:

26 mei 2026 om 22:00:00

Alert date:

27 mei 2026 om 15:06:57

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies, Database & Storage

A SQL injection vulnerability (CVE-2026-42761) affects the RealMag777 Active Products Tables for WooCommerce WordPress plugin. The vulnerability allows blind SQL injection attacks through improper neutralization of special elements in SQL commands. All versions from unknown starting point through version 1.0.9 are affected. This is a critical security flaw that could allow attackers to extract sensitive database information or manipulate data through crafted SQL queries.

Technical details

Mitigation steps:

Affected products:

Active Products Tables for WooCommerce
profit-products-tables-for-woocommerce

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-42761
https://patchstack.com/database/Wordpress/Plugin/profit-products-tables-for-woocommerce/vulnerability/wordpress-active-products-tables-for-woocommerce-plugin-1-0-9-sql-injection-vulnerability?_s_id=cve

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Deze website toont informatie afkomstig van externe bronnen; Perceptive aanvaardt geen verantwoordelijkheid voor de juistheid, volledigheid of actualiteit van deze informatie.

bottom of page