Does Reality shop – Unlimited 3D for Elementor and WooCommerce have any unpatched vulnerabilities?

No. All known vulnerabilities in Reality shop – Unlimited 3D for Elementor and WooCommerce have been patched as of the latest data update. Always keep the plugin updated to the latest version.

Is Reality shop – Unlimited 3D for Elementor and WooCommerce compatible with WordPress 6.8.5?

According to WordPress.org data, Reality shop – Unlimited 3D for Elementor and WooCommerce 2.0.4 has been tested up to WordPress 6.8.5. Check the plugin's changelog for the latest compatibility information.

Is Reality shop – Unlimited 3D for Elementor and WooCommerce compatible with PHP 7.4+?

Reality shop – Unlimited 3D for Elementor and WooCommerce requires PHP 7.4 or higher. Most modern WordPress hosts run PHP 8.1 or 8.2. If you are on an older PHP version, consider upgrading before installing this plugin.

Reality shop – Unlimited 3D for Elementor and WooCommerce Security & Risk Analysis

wordpress.org/plugins/reality-shop-3d

🔥 Reality Shop 3D – WooCommerce 3D & 360° Product Viewer for WordPress

0 active installs v2.0.4 PHP 7.4+ WP 5.5+ Updated Feb 18, 2026

360-viewer3d-model-viewerarelementor-3d-widgetwoocommerce-3d

A · Safe

CVEs total0

Unpatched0

Last CVENever

Plugin page Download

Safety Verdict

Is Reality shop – Unlimited 3D for Elementor and WooCommerce Safe to Use in 2026?

Generally Safe

Score 100/100

Reality shop – Unlimited 3D for Elementor and WooCommerce has no known CVEs and is actively maintained. It's a solid choice for most WordPress installations.

No known CVEs Updated 1mo ago

Risk Assessment

The plugin 'reality-shop-3d' v2.0.4 exhibits a mixed security posture. On the positive side, it demonstrates good practices regarding SQL queries, exclusively using prepared statements, and has no recorded vulnerability history (CVEs), suggesting a relatively stable and secure codebase. The absence of dangerous functions, file operations, and taint flows with unsanitized paths further strengthens this perception.

However, several concerns emerge from the static analysis. The presence of three AJAX handlers, with one lacking any authentication checks, presents a significant attack vector. While the overall output escaping is low (17%), this is partially mitigated by the relatively small number of outputs. The single external HTTP request also warrants attention, as its destination and purpose are not detailed, but it could potentially be a point of compromise if not handled securely.

In conclusion, while the plugin has a clean vulnerability history and uses secure SQL practices, the unprotected AJAX endpoint is a critical flaw that significantly elevates its risk profile. The low output escaping rate is also a concern that needs to be addressed to prevent potential cross-site scripting (XSS) vulnerabilities.

Key Concerns

AJAX handler without authentication
Low percentage of properly escaped output

Vulnerabilities

None known

Reality shop – Unlimited 3D for Elementor and WooCommerce Security Vulnerabilities

No known vulnerabilities — this is a good sign.

Code Analysis

Analyzed Mar 17, 2026

Reality shop – Unlimited 3D for Elementor and WooCommerce Code Analysis

Dangerous Functions

Raw SQL Queries

0 prepared

Unescaped Output

14 escaped

Nonce Checks

Capability Checks

File Operations

External Requests

Bundled Libraries

Output Escaping

17% escaped84 total outputs

Data Flows

All sanitized

Data Flow Analysis

2 flows

update_reality_shop_option_function (RealityShop3D.php:533)

Source (user input) Sink (dangerous op) Sanitizer Transform Unsanitized Sanitized

Attack Surface

1 unprotected

Reality shop – Unlimited 3D for Elementor and WooCommerce Attack Surface

Entry Points3

Unprotected1

AJAX Handlers 3

authwp_ajax_reality_shop_save_feedbackRealityShop3D.php:117

authwp_ajax_update_reality_shop_optionRealityShop3D.php:531

authwp_ajax_rs3d_get_item_typeRealityShop3D.php:1057

WordPress Hooks 13

actioninitRealityShop3D.php:57

actionadmin_enqueue_scriptsRealityShop3D.php:81

actionplugins_loadedRealityShop3D.php:151

actionelementor/widgets/registerRealityShop3D.php:178

actionelementor/elements/categories_registeredRealityShop3D.php:190

filterupload_mimesRealityShop3D.php:202

filterwp_check_filetype_and_extRealityShop3D.php:211

filterfile_is_displayable_imageRealityShop3D.php:230

actionadmin_initRealityShop3D.php:247

actionadmin_menuRealityShop3D.php:274

actionadmin_enqueue_scriptsRealityShop3D.php:971

actionelementor/editor/after_enqueue_scriptsRealityShop3D.php:1042

actionadmin_headRealityShop3D.php:1095

Maintenance & Trust

Reality shop – Unlimited 3D for Elementor and WooCommerce Maintenance & Trust

Maintenance Signals

WordPress version tested6.8.5

Last updatedFeb 18, 2026

PHP min version7.4

Downloads2K

Community Trust

Rating100/100

Number of ratings1

Active installs0

Alternatives

Reality shop – Unlimited 3D for Elementor and WooCommerce Alternatives

3D Viewer Online

3dvieweronline-wp

An easy, realistic and customizable 3D Viewer to embed 3D models of your products/designs into your Wordpress/WooCommerce website (responsive layout)

40 1 CVE

WooCommerce

woocommerce

Everything you need to launch an online store in days and keep it growing for years. From your first sale to millions in revenue, Woo is with you.

7.0M 43 CVEs

Site Kit by Google – Analytics, Search Console, AdSense, Speed

google-site-kit

100

Site Kit is a one-stop solution for WordPress users to use everything Google has to offer to make them successful on the web.

5.0M 1 CVE

Wordfence Security – Firewall, Malware Scan, and Login Security

wordfence

Firewall, Malware Scanner, Two Factor Auth, and Comprehensive Security Features, powered by our 24-hour team. Make security a priority with Wordfence.

5.0M 12 CVEs

All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic

all-in-one-seo-pack

AIOSEO is the most powerful WordPress SEO plugin. Improve SEO rankings and traffic with comprehensive SEO tools and smart AI SEO optimizations!

3.0M 26 CVEs

Developer Profile

Reality shop – Unlimited 3D for Elementor and WooCommerce Developer Profile

kouroshweb

1 plugin · 0 total installs

trust score

Avg Security Score

100/100

Avg Patch Time

30 days

View full developer profile

Detection Fingerprints

How We Detect Reality shop – Unlimited 3D for Elementor and WooCommerce

Patterns used to identify this plugin on WordPress sites during automated security audits and web crawling.

Asset Fingerprints

Asset Paths

/wp-content/plugins/reality-shop-3d/assets/css/widget-style.css/wp-content/plugins/reality-shop-3d/assets/js/widget-script.js/wp-content/plugins/reality-shop-3d/assets/js/survey.js

Script Paths

/wp-content/plugins/reality-shop-3d/assets/js/widget-script.js/wp-content/plugins/reality-shop-3d/assets/js/survey.js

Version Parameters

reality-shop-3d/assets/css/widget-style.css?ver=reality-shop-3d/assets/js/widget-script.js?ver=reality-shop-3d/assets/js/survey.js?ver=

HTML / DOM Fingerprints

CSS Classes

reality-shop-3d-widget-container

Data Attributes

data-rs3d-modal-id

JS Globals

RS3DSurvey

Shortcode Output

[reality_shop_3d_widget]

FAQ