CVE-2025-64217 | ThemeGoods Photography Plugin up to 7.7.2 on WordPress cross site scripting

December 18, 2025 Yanac

A vulnerability identified as problematic has been detected in ThemeGoods Photography Plugin up to 7.7.2 on WordPress. Impacted is an unknown function. Performing manipulation results in cross site scripting.

This vulnerability was named CVE-2025-64217. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More

CVE-2025-66074 | Cozmoslabs WP Webhooks Plugin up to 3.3.8 on WordPress unrestricted upload
CVE-2025-64206 | TieLabs Jannah Plugin up to 7.6.0 on WordPress deserialization