The vulnerability identified as CVE-2025-69337 affects don-themes Wolmart Core versions up to 1.9.6. It is caused by improper neutralization of special elements in SQL commands, enabling Blind SQL Injection attacks. This allows remote attackers to extract information from the database without authentication or user interaction. The CVSS 3.1 base score is 9.3, reflecting critical severity with high confidentiality impact and low availability impact. No vendor advisory or patch information is currently available, and the product is not a cloud service.

Successful exploitation of this vulnerability can lead to unauthorized disclosure of sensitive data from the backend database (confidentiality impact). The availability impact is low, meaning the system may experience limited disruption. Integrity impact is not indicated. There are no known active exploits in the wild, but the vulnerability's critical severity suggests a significant risk if exploited.

Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Since no official patch or fix information is provided, users should monitor don-themes communications for updates. Until a fix is available, consider applying any recommended temporary mitigations from the vendor or restricting access to vulnerable components if possible.