Known Vulnerabilities for products from ThemeGoods
Listed below are 10 of the newest known vulnerabilities associated with the vendor "ThemeGoods".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-27043 | Not Provided | 2026-03-19 | 2026-04-01 | |
| CVE-2025-60116 | Missing Authorization vulnerability in ThemeGoods Grand Conference Theme Custom Post Type grandconference-custom-post allows ... | Not Provided | 2025-09-26 | 2026-04-01 |
| CVE-2025-47579 | Deserialization of Untrusted Data vulnerability in ThemeGoods Photography photography allows Object Injection.This issue affe... | Not Provided | 2025-09-09 | 2026-04-01 |
| CVE-2025-39485 | Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Tour grandtour allows Object Injection.This issue affects... | Not Provided | 2025-05-23 | 2026-04-01 |
| CVE-2025-39354 | Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Conference grandconference allows Object Injection.This i... | Not Provided | 2025-05-19 | 2026-04-01 |
| CVE-2025-39353 | Missing Authorization vulnerability in ThemeGoods Grand Restaurant grandrestaurant allows Exploiting Incorrectly Configured A... | Not Provided | 2025-05-19 | 2026-04-01 |
| CVE-2025-39352 | Missing Authorization vulnerability in ThemeGoods Grand Restaurant grandrestaurant allows Exploiting Incorrectly Configured A... | Not Provided | 2025-05-19 | 2026-04-01 |
| CVE-2025-39351 | Cross-Site Request Forgery (CSRF) vulnerability in ThemeGoods Grand Restaurant grandrestaurant allows Cross Site Request Forg... | Not Provided | 2025-05-19 | 2026-04-01 |
| CVE-2025-39348 | Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Restaurant grandrestaurant allows Object Injection.This i... | Not Provided | 2025-05-19 | 2026-04-01 |
| CVE-2025-32928 | Deserialization of Untrusted Data vulnerability in ThemeGoods Altair altair allows Object Injection.This issue affects Altair... | Not Provided | 2025-05-19 | 2026-04-01 |
| CVE-2025-32926 | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in ThemeGoods Grand Restaurant g... | Not Provided | 2025-05-19 | 2026-04-01 |