WoodMart

Vulnerabilities 18Slug woodmartTheme page →

Minimum safe version

8.4.0

Update to 8.4.0 or later to address 18 fixable vulnerabilities

High 8.1

2026-03-25< 8.3.9

CVE-2026-23971

CVE Wordfence

Medium 5.3

2026-03-13< 8.4.0

CVE-2026-32405

CVE Wordfence

Medium 5.3

2026-01-22< 8.3.8

CVE-2025-47600

CVE Wordfence

Medium 6.5

2025-10-22< 8.3.2

CVE-2025-49936

CVE Wordfence

High 7.5

2025-10-22< 8.3.2

CVE-2025-49935

CVE Wordfence

Medium 5.3

2025-07-26< 8.2.7

WoodMart - Multipurpose WooCommerce Theme <= 8.2.6 - Improper Input Validation Leading to Unauthenticated Cart Manipulation

EUVD Wordfence CVE

Medium 5.3

2025-07-11< 8.2.6

WoodMart <= 8.2.5 - Unauthenticated Post Disclosure

EUVD Wordfence CVE

High 7.3

2025-07-08< 8.2.4

Woodmart <= 8.2.3 - Unauthenticated Arbitrary Shortcode Execution

EUVD Wordfence CVE

High 8.8

2025-07-08< 8.2.4

WoodMart <= 8.2.3 - Authenticated (Contributor+) Local File Inclusion

EUVD Wordfence CVE

Medium 6.4

2025-07-08< 8.2.4

WoodMart <= 8.2.3 - Authenticated (Contributor+) Stored Cross-Site Scripting

EUVD Wordfence CVE

Medium 6.5

2024-12-12< 8.0.4

CVE-2024-12333

CVE Patchstack Wordfence

High 7.1

2023-09-25< 7.2.5

CVE-2023-41872

CVE Patchstack Wordfence WPScan

N/A

< 7.1.2

WoodMart < 7.1.2 - License Update/Deactivation via CSRF

WPScan

Medium 5.4

2023-06-22< 7.2.2

CVE-2023-32239

CVE Patchstack Wordfence WPScan

Medium 5.4

2025-01-02< 7.2.2

CVE-2023-32240

CVE Patchstack Wordfence

Medium 5.4

2023-11-09< 7.1.2

CVE-2023-32500

CVE Patchstack

N/A

2023-03-01< 7.1.2

Woodmart <= 7.1.1 - Cross-Site Request Forgery to License Update

Wordfence

Medium 5.3

2024-04-24< 7.1.2

CVE-2023-25790

CVE Wordfence Patchstack Wordfence WPScan