CVE-2026-32458

Name of the Vulnerable Software and Affected Versions RealMag777 WOLF versions through 1.0.8.7

Description The RealMag777 WOLF bulk-editor is susceptible to a SQL Injection issue, specifically a Blind SQL Injection. This allows attackers to execute arbitrary SQL queries against the database. Attackers may potentially read or modify sensitive database data, which could lead to account takeover or site compromise. The issue stems from improper neutralization of special elements used in an SQL command.

Recommendations Update the plugin to the latest patched version. Restrict access to WordPress admin endpoints. Monitor logs for suspicious SQL queries. Use a WAF or database query filtering.