A vulnerability was found in Woodmart Plugin up to 8.2.3 on WordPress. It has been declared as critical. Affected by this vulnerability is the function woodmart_get_products_shortcode of the component Shortcode Handler. The manipulation leads to Remote Code Execution.

This vulnerability is known as CVE-2025-6744. The attack can be launched remotely. There is no exploit available.