Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
8.1
Wolmart Theme: Malicious Files Can Be Included
CVE-2026-22385
Summary
The Wolmart theme for your online store may allow hackers to load and execute any file on your server. This means they could potentially steal sensitive data, delete important files, or even take control of your website. Update to a newer version of the theme or contact your developer to fix this issue.
Original title
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in don-themes Wolmart wolmart allows PHP Local File Inclusion.This issue affect...
Original description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in don-themes Wolmart wolmart allows PHP Local File Inclusion.This issue affects Wolmart: from n/a through <= 1.9.6.
Vulnerability type
CWE-98
Improper Control of Filename for Include
Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026