Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

RegistrationMagic — Vulnerabilities & Security Advisories 21

All 21 CVE vulnerabilities found in RegistrationMagic, with AI-generated Chinese analysis, references, and POCs.

This page documents common Weakness Type vulnerabilities associated with the RegistrationMagic product. It aggregates known security flaws and misconfigurations that have been identified within this WordPress plugin ecosystem, focusing on how developers and administrators can recognize and mitigate these specific risk vectors. The content covers a broad spectrum of issues including injection flaws, broken access control, and security misconfigurations that have emerged over the past several years. By centralizing this information, the page serves as a historical record of the plugin’s security posture. Readers can utilize this resource to track the vendor’s history of advisories and patch releases, gaining insight into how Responsively handles security updates over time. Additionally, users can understand the root causes and potential impacts of specific weakness classes, such as Cross-Site Scripting or SQL Injection, as they apply to this particular software. The aggregated data allows security professionals and site administrators to look up the product’s vulnerability history, facilitating risk assessment and informed decision-making regarding plugin usage. This structured overview helps in identifying patterns in reported issues, enabling better proactive security measures. It does not provide technical exploit details but rather focuses on awareness and contextual understanding of the threats. This approach ensures that users are equipped with the necessary knowledge to evaluate the safety of their WordPress installations effectively.

Vendor: RegistrationMagic

CVE IDTitleCVSSSeverityPublished
CVE-2026-32498 WordPress RegistrationMagic plugin <= 6.0.7.6 - Broken Access Control vulnerability CWE-862 7.5 High2026-03-25
CVE-2026-24373 WordPress RegistrationMagic plugin <= 6.0.7.1 - Account Takeover vulnerability CWE-266 8.1 High2026-03-25
CVE-2026-32385 WordPress RegistrationMagic plugin <= 6.0.7.6 - Broken Access Control vulnerability CWE-862 5.4 Medium2026-03-13
CVE-2026-0929 RegistrationMagic < 6.0.7.2 - Subscriber+ Form Creation 4.3AIMediumAI2026-02-16
CVE-2025-15520 RegistrationMagic <= 6.0.7.2 - Subscriber+ Sensitive Data Disclosure 6.5AIMediumAI2026-02-13
CVE-2026-24374 WordPress RegistrationMagic plugin <= 6.0.6.9 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 5.4 Medium2026-01-22
CVE-2024-9390 RegistrationMagic < 6.0.2.1 - Stored XSS 4.8AIMediumAI2025-05-15
CVE-2025-24686 WordPress RegistrationMagic Plugin <= 6.0.3.3 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 7.1 High2025-01-31
CVE-2023-49831 WordPress RegistrationMagic plugin <= 5.2.3.0 - Broken Access Control vulnerability CWE-862 7.5 High2024-12-09
CVE-2024-43317 WordPress RegistrationMagic plugin <= 6.0.1.0 - Cross Site Scripting (XSS) vulnerability CWE-79 4.3 Medium2024-08-19
CVE-2024-39643 WordPress RegistrationMagic plugin <= 6.0.0.1 - Cross Site Scripting (XSS) vulnerability CWE-79 5.8 Medium2024-08-01
CVE-2023-51544 WordPress RegistrationMagic plugin <= 5.2.5.0 - Form Submission Limit Bypass vulnerability CWE-799 5.3 Medium2024-06-04
CVE-2023-51543 WordPress RegistrationMagic plugin <= 5.2.5.0 - IP Limit Bypass vulnerability CWE-290 5.3 Medium2024-06-04
CVE-2024-33947 WordPress RegistrationMagic plugin <= 5.3.2.0 - Cross Site Scripting (XSS) vulnerability CWE-79 7.1 High2024-05-03
CVE-2023-23989 WordPress RegistrationMagic plugin <= 5.1.9.2 - Content Injection CWE-79 5.3 Medium2024-04-24
CVE-2023-23976 WordPress RegistrationMagic plugin <= 5.1.9.2 - Arbitrary Price Change CWE-276 7.5 High2024-04-24
CVE-2024-2951 WordPress RegistrationMagic plugin <= 5.3.0.0 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 4.3 Medium2024-03-26
CVE-2024-25935 WordPress RegistrationMagic plugin <= 5.2.5.9 - Broken Access Control vulnerability CWE-862 4.3 Medium2024-03-21
CVE-2024-29113 WordPress RegistrationMagic plugin <= 5.2.5.9 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 7.1 High2024-03-19
CVE-2023-25991 WordPress RegistrationMagic Plugin <= 5.1.9.2 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352 5.4 Medium2023-03-13
CVE-2021-4073 RegistrationMagic <= 5.0.1.7 Authentication Bypass CWE-287 9.8 Critical2021-12-14

All 21 known CVE vulnerabilities affecting RegistrationMagic with full Chinese analysis, references, and POCs where available.