CVE-2025-6745
📋 TL;DR
The WoodMart WordPress theme plugin has an information exposure vulnerability that allows unauthenticated attackers to access password-protected, private, or draft posts. This affects all WordPress sites using WoodMart theme versions up to 8.2.5. Attackers can extract sensitive content they shouldn't have permission to view.
💻 Affected Systems
- WoodMart WordPress Theme
⚠️ Manual Verification Required
This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.
Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).
🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.
- Review the CVE details at NVD
- Check vendor security advisories for your specific version
- Test if the vulnerability is exploitable in your environment
- Consider updating to the latest version as a precaution
⚠️ Risk & Real-World Impact
Worst Case
Attackers extract sensitive draft content, private business information, or unpublished posts containing confidential data, leading to data breaches or competitive intelligence leaks.
Likely Case
Attackers systematically scrape protected posts to gather unpublished content, sensitive information, or intellectual property from vulnerable WordPress sites.
If Mitigated
With proper access controls and monitoring, impact is limited to exposure of non-critical draft content with minimal business impact.
🎯 Exploit Status
Exploitation requires simple HTTP requests to vulnerable endpoints; no authentication needed.
🛠️ Fix & Mitigation
✅ Official Fix
Patch Version: 8.2.6 or later
Vendor Advisory: https://themeforest.net/item/woodmart-woocommerce-wordpress-theme/20264492
Restart Required: No
Instructions:
1. Log into WordPress admin panel
2. Navigate to Appearance > Themes
3. Check for WoodMart theme updates
4. Update to version 8.2.6 or later
5. Clear WordPress cache if applicable
🔧 Temporary Workarounds
Disable vulnerable function
allAdd code to functions.php to disable the woodmart_get_posts_by_query() function
Add to theme's functions.php: remove_action('wp_ajax_woodmart_get_posts_by_query', 'woodmart_get_posts_by_query'); remove_action('wp_ajax_nopriv_woodmart_get_posts_by_query', 'woodmart_get_posts_by_query');
🧯 If You Can't Patch
- Implement web application firewall (WAF) rules to block requests to woodmart_get_posts_by_query endpoint
- Restrict access to WordPress admin and AJAX endpoints using IP whitelisting
🔍 How to Verify
Check if Vulnerable:
Check WordPress admin panel > Appearance > Themes for WoodMart theme version 8.2.5 or earlierCheck Version:
wp theme list --field=name,version | grep woodmartVerify Fix Applied:
Confirm WoodMart theme version is 8.2.6 or later in WordPress admin📡 Detection & Monitoring
Log Indicators:
- Multiple POST requests to /wp-admin/admin-ajax.php with action=woodmart_get_posts_by_query
- Unusual access patterns to draft or private posts
Network Indicators:
- HTTP POST requests containing 'woodmart_get_posts_by_query' parameter
- Traffic to WordPress AJAX endpoints from unexpected sources
SIEM Query:
source="web_logs" AND uri="/wp-admin/admin-ajax.php" AND post_data="woodmart_get_posts_by_query"