CVE-2026-24943
- EPSS 0.04%
- Veröffentlicht 20.02.2026 15:47:07
- Zuletzt bearbeitet 23.02.2026 22:16:24
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeGoods Grand Conference grandconference allows Reflected XSS.This issue affects Grand Conference: from n/a through <= 5.3.4.
CVE-2025-64224
- EPSS 0.05%
- Veröffentlicht 06.11.2025 15:56:10
- Zuletzt bearbeitet 29.01.2026 15:08:10
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeGoods Grand Conference Theme Custom Post Type grandconference-custom-post allows Reflected XSS.This issue affects Grand Conference Theme Custom...
CVE-2025-60116
- EPSS 0.05%
- Veröffentlicht 26.09.2025 09:15:38
- Zuletzt bearbeitet 27.01.2026 19:55:42
Missing Authorization vulnerability in ThemeGoods Grand Conference Theme Custom Post Type allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Grand Conference Theme Custom Post Type: from n/a through 2.6.3.
CVE-2025-39354
- EPSS 0.14%
- Veröffentlicht 19.05.2025 19:48:09
- Zuletzt bearbeitet 28.01.2026 15:38:19
Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Conference allows Object Injection.This issue affects Grand Conference: from n/a through 5.2.