CVE-2026-24949

None

No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.

Name of the Vulnerable Software and Affected Versions ThemeGoods PhotoMe versions through 5.7.1

Description The software contains a flaw related to improper input handling during web page generation, leading to a DOM-Based Cross-site Scripting (XSS) condition. This allows for potential malicious code execution within the context of the user's browser.

Recommendations Update ThemeGoods PhotoMe to a version newer than 5.7.1.

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2026-24949

Affected Products

Photome

CVE-2026-24949

Weakness Enumeration

Related Identifiers

Affected Products

References · 3