Themegoods Photography
Don't miss out!
Thousands of developers use stack.watch to stay informed.Get an email whenever new security vulnerabilities are reported in Themegoods Photography.
By the Year
In 2026 there have been 4 vulnerabilities in Themegoods Photography with an average score of 7.5 out of ten. Last year, in 2025 Photography had 2 security vulnerabilities published. That is, 2 more vulnerabilities have already been reported in 2026 as compared to last year. However, the average CVE base score of the vulnerabilities in 2026 is greater by 0.37.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2026 | 4 | 7.47 |
| 2025 | 2 | 7.10 |
It may take a day or so for new Photography vulnerabilities to show up in the stats or in the list of recent security vulnerabilities. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Themegoods Photography Security Vulnerabilities
CSRF Vulnerability in ThemeGoods Grand Photography pre5.7.8
CVE-2026-39603
- April 08, 2026
Cross-Site Request Forgery (CSRF) vulnerability in ThemeGoods Grand Photography grandphotography allows Cross Site Request Forgery.This issue affects Grand Photography: from n/a through <= 5.7.8.
Session Riding
ThemeGoods Photography 7.7.5 Unrestricted Upload Path Traversal
CVE-2026-27043
7.2 - High
- March 19, 2026
Unrestricted Upload of File with Dangerous Type vulnerability in ThemeGoods Photography allows Path Traversal.This issue affects Photography: from n/a before 7.7.6.
Unrestricted File Upload
WP ThemeGoods Photography <=7.6.1 DOM-Based XSS
CVE-2026-27348
7.1 - High
- March 05, 2026
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeGoods Photography allows DOM-Based XSS.This issue affects Photography: from n/a before 7.7.6.
XSS
PHP RFI via Include/Require in ThemeGoods Photography <7.7.5
CVE-2025-68510
8.1 - High
- January 22, 2026
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in ThemeGoods Photography photography allows PHP Local File Inclusion.This issue affects Photography: from n/a through < 7.7.5.
Remote file include
ThemeGoods Photography v<=7.7.2 Reflected XSS
CVE-2025-64217
7.1 - High
- December 18, 2025
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeGoods Photography photography allows Reflected XSS.This issue affects Photography: from n/a through <= 7.7.2.
XSS
EPC Photography SSRF Vulnerability (<=7.5.2)
CVE-2025-30964
- April 15, 2025
Server-Side Request Forgery (SSRF) vulnerability in ThemeGoods Photography photography allows Server Side Request Forgery.This issue affects Photography: from n/a through < 7.7.6.
SSRF
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for Themegoods Photography or by Themegoods? Click the Watch button to subscribe.
