Object Injection Vulnerability in xtemos WoodMart Theme
CVE-2026-23971

Currently unrated

Key Information:

Vendor

WordPress
Status
Woodmart
Vendor
CVE Published:
25 March 2026

What is CVE-2026-23971?

The WoodMart theme developed by xtemos is susceptible to a deserialization vulnerability that allows for object injection. This occurs when untrusted data is processed without adequate validation, potentially enabling an attacker to manipulate program behavior or escalate privileges. Ensure that you are running the latest version of WoodMart to mitigate exposure to this security issue.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

Affected Version(s)

WoodMart <= n/a

References

https://patchstack.com/database/Wordpress/Theme/woodmart/...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Phat RiO | Patchstack Bug Bounty Program
JSON
.