CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

72 matches found

Cvelist•added 2026/03/25 4:14 p.m.•22 views

CVE-2026-23971 WordPress WoodMart theme <= 8.3.8 - PHP Object Injection vulnerability

Deserialization of Untrusted Data vulnerability in xtemos WoodMart woodmart allows Object Injection.This issue affects WoodMart: from n/a through = 8.3.8...

8.1CVSS0.00061EPSS

Exploits0References1

Patchstack•added 2026/03/23 12:28 p.m.•2 views

WordPress WoodMart theme <= 8.3.8 - PHP Object Injection vulnerability

PHP Object Injection vulnerability discovered by Phat RiO in WordPress Theme WoodMart versions = 8.3.8...

8.1CVSS5.8AI score0.00061EPSS

Exploits0Affected Software1

CVE•added 2026/03/13 11:42 a.m.•10 views

CVE-2026-32405

CVE-2026-32405 concerns the WordPress WoodMart theme (WoodMart) up to version 8.3.9, where an Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability allows retrieval of embedded sensitive data. The affected component is the WoodMart theme frontend/backend handlin...

5.3CVSS5.8AI score0.00041EPSS

Exploits0References1

Cvelist•added 2026/03/13 11:42 a.m.•23 views

CVE-2026-32405 WordPress WoodMart theme <= 8.3.9 - Sensitive Data Exposure vulnerability

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in xtemos WoodMart woodmart allows Retrieve Embedded Sensitive Data.This issue affects WoodMart: from n/a through = 8.3.9...

5.3CVSS0.00041EPSS

Exploits0References1

Vulnrichment•added 2026/03/13 11:42 a.m.•2 views

CVE-2026-32405 WordPress WoodMart theme <= 8.3.9 - Sensitive Data Exposure vulnerability

5.8AI score0.00041EPSS

Exploits0References1

CVE•added 2026/01/22 4:51 p.m.•8 views

CVE-2025-47600

CVE-2025-47600 affects WoodMart (xtemos WoodMart theme) up to version 8.3.7. Description notes a Basic XSS via improper neutralization of script-related HTML tags enabling Code Injection in WoodMart pages. Connected sources show concrete details: affected product WoodMart; vulnerability type Basi...

5.3CVSS5.4AI score0.00021EPSS

Exploits0References1

Vulnrichment•added 2026/01/22 4:51 p.m.•2 views

CVE-2025-47600 WordPress WoodMart theme <= 8.3.7 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in xtemos WoodMart woodmart allows Code Injection.This issue affects WoodMart: from n/a through = 8.3.7...

5.3CVSS5.9AI score0.00021EPSS

Exploits0References1

Cvelist•added 2026/01/22 4:51 p.m.•18 views

CVE-2025-47600 WordPress WoodMart theme <= 8.3.7 - Arbitrary Shortcode Execution vulnerability

Improper Neutralization of Script-Related HTML Tags in a Web Page Basic XSS vulnerability in xtemos WoodMart woodmart allows Code Injection.This issue affects WoodMart: from n/a through = 8.3.7...

5.3CVSS0.00021EPSS

Exploits0References1

Patchstack•added 2026/01/09 1:22 a.m.•4 views

WordPress WoodMart theme <= 8.3.7 - Arbitrary Shortcode Execution vulnerability

Arbitrary Shortcode Execution vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme WoodMart versions = 8.3.7...

6.1CVSS5.4AI score0.00021EPSS

Exploits0Affected Software1

Vulnrichment•added 2025/10/22 2:32 p.m.•2 views

CVE-2025-49935 WordPress WoodMart theme < 8.3.2 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in xtemos WoodMart woodmart allows PHP Local File Inclusion.This issue affects WoodMart: from n/a through 8.3.2...

7.5CVSS6.7AI score0.00117EPSS

Exploits0References1

CVE•added 2025/10/22 2:32 p.m.•5 views

CVE-2025-49935

CVE-2025-49935 affects WordPress WoodMart theme versions before 8.3.2 and is a Local File Inclusion (LFI) flaw caused by improper control of the filename in include/require statements (PHP Remote File Inclusion context). The issue could allow an attacker to include local files via crafted request...

7.5CVSS6.7AI score0.00117EPSS

Exploits0References1

Cvelist•added 2025/10/22 2:32 p.m.•6 views

CVE-2025-49936 WordPress WoodMart theme < 8.3.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in xtemos WoodMart woodmart allows DOM-Based XSS.This issue affects WoodMart: from n/a through 8.3.2...

6.5CVSS0.0003EPSS

Exploits0References1

CVE•added 2025/10/22 2:32 p.m.•7 views

CVE-2025-49936

CVE-2025-49936: WordPress WoodMart theme

6.5CVSS6AI score0.0003EPSS

Exploits0References1

Patchstack•added 2025/10/14 7:25 p.m.•3 views

WordPress WoodMart theme < 8.3.2 - Local File Inclusion vulnerability

Local File Inclusion vulnerability discovered by João Pedro S Alcântara Kinorth in WordPress Theme WoodMart versions 8.3.2...

7.4CVSS7AI score0.00117EPSS

Exploits0Affected Software1