Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| don-themes | Molla | unaffected |
|
No data.
No data.
OpenCVE Enrichment is a feature of OpenCVE that uses AI to automatically link vendors and products to CVEs. Learn more on GitHub.
| Vendors | Products |
|---|---|
|
Don-themes
Subscribe
|
Molla
Subscribe
|
|
Wordpress
Subscribe
|
Wordpress
Subscribe
|
Project Subscriptions
No advisories yet.
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
Thu, 26 Mar 2026 12:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Don-themes
Don-themes molla Wordpress Wordpress wordpress |
|
| Vendors & Products |
Don-themes
Don-themes molla Wordpress Wordpress wordpress |
Wed, 25 Mar 2026 21:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
Wed, 25 Mar 2026 16:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in don-themes Molla molla allows Reflected XSS.This issue affects Molla: from n/a through < 1.5.19. | |
| Title | WordPress Molla theme < 1.5.19 - Reflected Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
|
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-03-25T20:13:17.787Z
Reserved: 2026-03-12T11:12:24.776Z
Link: CVE-2026-32529
Vulnrichment
Updated: 2026-03-25T20:02:55.614Z
NVD
Status : Received
Published: 2026-03-25T17:17:06.223
Modified: 2026-03-25T21:16:44.120
Link: CVE-2026-32529
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-03-26T12:12:21Z