CVE-2025-64217

Name of the Vulnerable Software and Affected Versions ThemeGoods Photography versions through 7.7.2

Description The software contains a flaw related to improper input handling during web page generation, specifically a Reflected Cross-Site Scripting (XSS) issue. This allows for the execution of malicious scripts within the application. The vulnerable component is susceptible to attacks where crafted input can be injected into web pages, potentially compromising user data or system integrity. The vulnerable parameter is not specified.

Recommendations Update ThemeGoods Photography to a version newer than 7.7.2.