Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%
Buy Us a Coffee

WoodMart — Vulnerabilities & Security Advisories 16

All 16 CVE vulnerabilities found in WoodMart, with AI-generated Chinese analysis, references, and POCs.

This page aggregates vulnerability data specifically associated with the WoodMart WordPress theme, categorized by vendor advisories, specific product instances, and Common Weakness Enumeration (CWE) classifications. It collects reported security flaws and patches affecting this e-commerce solution over a defined historical period, ensuring a comprehensive view of the software's security landscape. Visitors to this resource can track advisory updates issued by the vendor to stay informed about critical fixes, understand the nature and severity of specific weakness classes prevalent in the codebase, and look up the complete vulnerability history for the WoodMart product to assess long-term risk exposure. By centralizing this information, the page facilitates informed decision-making for developers, site administrators, and security researchers who rely on this theme. The data presented here is derived from official sources and public disclosures, aiming to provide clarity on the security posture of the software. Users are encouraged to review the details to identify potential areas of concern, apply necessary updates, and follow best practices for securing their online stores against known exploitation techniques. This aggregation serves as a vital reference point for maintaining the integrity and safety of websites utilizing the WoodMart platform.

Vendor: xtemos

CVE IDTitleCVSSSeverityPublished
CVE-2026-56072 WordPress WoodMart theme <= 8.5.3 - Cross Site Scripting (XSS) vulnerability CWE-79 7.1 High2026-06-26
CVE-2026-23971 WordPress WoodMart theme <= 8.3.8 - PHP Object Injection vulnerability CWE-502 8.1 High2026-03-25
CVE-2026-32405 WordPress WoodMart theme <= 8.3.9 - Sensitive Data Exposure vulnerability CWE-497 5.3 Medium2026-03-13
CVE-2025-47600 WordPress WoodMart theme <= 8.3.7 - Arbitrary Shortcode Execution vulnerability CWE-80 5.3 Medium2026-01-22
CVE-2025-49936 WordPress WoodMart theme < 8.3.2 - Cross Site Scripting (XSS) vulnerability CWE-79 6.5 Medium2025-10-22
CVE-2025-49935 WordPress WoodMart theme < 8.3.2 - Local File Inclusion vulnerability CWE-98 7.5 High2025-10-22
CVE-2025-8097 WoodMart - Multipurpose WooCommerce Theme <= 8.2.6 - Improper Input Validation Leading to Unauthenticated Cart Manipulation CWE-20 5.3 Medium2025-07-26
CVE-2025-6745 WoodMart <= 8.2.5 - Unauthenticated Post Disclosure CWE-200 5.3 Medium2025-07-11
CVE-2025-6744 Woodmart <= 8.2.3 - Unauthenticated Arbitrary Shortcode Execution CWE-94 7.3 High2025-07-08
CVE-2025-6746 WoodMart <= 8.2.3 - Authenticated (Contributor+) Local File Inclusion CWE-98 8.8 High2025-07-08
CVE-2025-6743 WoodMart <= 8.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting CWE-79 6.4 Medium2025-07-08
CVE-2023-32240 WordPress Woodmart theme <= 7.2.1 - Broken Access Control vulnerability CWE-862 5.4 Medium2025-01-02
CVE-2024-12333 WoodMart <= 8.0.3 - Unauthenticated Arbitrary Shortcode Execution CWE-94 6.5 Medium2024-12-12
CVE-2023-25790 WordPress WoodMart theme <= 7.0.4 - Unauth Arbitrary Shortcodes Injection CWE-287 5.3 Medium2024-04-24
CVE-2023-41872 WordPress WoodMart Theme <= 7.2.4 is vulnerable to Cross Site Scripting (XSS) CWE-79 7.1 High2023-09-25
CVE-2023-32239 WordPress WoodMart Theme <= 7.2.1 is vulnerable to Cross Site Scripting (XSS) CWE-79 5.4 Medium2023-06-22

All 16 known CVE vulnerabilities affecting WoodMart with full Chinese analysis, references, and POCs where available.