Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

don-themes — Vulnerabilities & Security Advisories 8

Browse all 8 CVE security advisories affecting don-themes. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Don-themes is a WordPress theme provider offering pre-designed templates for websites, primarily used by small to medium businesses. Historically, the themes have been vulnerable to multiple security issues including remote code execution, cross-site scripting, and privilege escalation, with 8 CVEs recorded. These vulnerabilities often stem from insufficient input validation and improper access controls. Notable security characteristics include poor coding practices and inconsistent security updates, leading to widespread exploitation in the wild. The high number of CVEs indicates a pattern of security neglect, making these themes frequent targets for attackers seeking to compromise websites for malicious activities like data theft or malware distribution.

Top products by don-themes: Riode Molla Wolmart | Multi-Vendor Marketplace WooCommerce Theme Wolmart Core Wolmart Riode Core
CVE IDTitleCVSSSeverityPublished
CVE-2026-32529 WordPress Molla theme < 1.5.19 - Reflected Cross Site Scripting (XSS) vulnerability — MollaCWE-79 7.1 High2026-03-25
CVE-2026-32528 WordPress Riode | Multi-Purpose WooCommerce theme < 1.6.29 - Reflected Cross Site Scripting (XSS) vulnerability — RiodeCWE-79 7.1 High2026-03-25
CVE-2026-22385 WordPress Wolmart theme <= 1.9.6 - Local File Inclusion vulnerability — WolmartCWE-98 8.1 High2026-03-05
CVE-2025-69339 WordPress Molla theme <= 1.5.16 - Local File Inclusion vulnerability — MollaCWE-98 8.1 High2026-03-05
CVE-2025-69338 WordPress Riode Core plugin <= 1.6.26 - SQL Injection vulnerability — Riode CoreCWE-89 9.3 Critical2026-03-05
CVE-2025-69337 WordPress Wolmart Core plugin <= 1.9.6 - SQL Injection vulnerability — Wolmart CoreCWE-89 9.3 Critical2026-02-20
CVE-2025-60071 WordPress Riode | Multi-Purpose WooCommerce theme <= 1.6.23 - Local File Inclusion vulnerability — RiodeCWE-98 8.1 High2025-12-18
CVE-2024-13793 Wolmart | Multi-Vendor Marketplace WooCommerce Theme <= 1.8.11 - Unauthenticated Arbitrary Shortcode Execution in wolmart_loadmore — Wolmart | Multi-Vendor Marketplace WooCommerce ThemeCWE-94 7.3 High2025-05-08

This page lists every published CVE security advisory associated with don-themes. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.