CVE-2026-27348

Name of the Vulnerable Software and Affected Versions ThemeGoods Photography versions through 7.6.1

Description The software contains a flaw related to improper input handling during web page generation, leading to a DOM-Based Cross-site Scripting (XSS) condition. This allows for potential execution of malicious scripts within the context of a user's browser. The issue affects the Photography product.

Recommendations Update ThemeGoods Photography to a version later than 7.6.1.