3 matches found
CVE-2025-6745
CVE-2025-6745 concerns the WoodMart WordPress plugin (versions ≤ 8.2.5). The issue is information exposure through woodmart_get_posts_by_query(), caused by insufficient restrictions on which posts can be included, allowing unauthenticated attackers to access data from password‑protected, private,...
CVE-2025-6745 WoodMart <= 8.2.5 - Unauthenticated Post Disclosure
The WoodMart plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 8.2.5 via the woodmartgetpostsbyquery function due to insufficient restrictions on which posts can be included. This makes it possible for unauthenticated attackers to extract data from...
WordPress WoodMart Theme <= 8.2.5 is vulnerable to Broken Access Control
Software WoodMart Type Theme Vulnerable versions = 8.2.5 Fixed in 8.2.6 OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Access Control CVE CVE-2025-6745 Patch priority Low CVSS severity Low 5.3 Developer Xtemos PSID db887fae132e Credits stealthcopter Required...