CVE Catalog

CVE-2026-56072

HighCVSS 7.1
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.18%

8th percentile — higher than 8% of all known CVEs

Summary

Unauthenticated Cross Site Scripting (XSS) vulnerability in WoodMart versions up to 8.5.3 allows an attacker to execute malicious scripts without authentication.

Risk Assessment

The risk includes potential theft of user sessions, redirection to malicious sites, or unauthorized modification of website content.

Recommendation

Immediately update WoodMart theme to version 8.5.4 or later, which includes a fix for the XSS vulnerability.

Original NVD description (English source)

Unauthenticated Cross Site Scripting (XSS) in WoodMart <= 8.5.3 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS