CVE Catalog
CVE-2026-56072
HighCVSS 7.1Exploitation Probability (EPSS)
Low risk0.18%
8th percentile — higher than 8% of all known CVEs
Summary
Unauthenticated Cross Site Scripting (XSS) vulnerability in WoodMart versions up to 8.5.3 allows an attacker to execute malicious scripts without authentication.
Risk Assessment
The risk includes potential theft of user sessions, redirection to malicious sites, or unauthorized modification of website content.
Recommendation
Immediately update WoodMart theme to version 8.5.4 or later, which includes a fix for the XSS vulnerability.
Original NVD description (English source)
Unauthenticated Cross Site Scripting (XSS) in WoodMart <= 8.5.3 versions.

