{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-27043", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "state": "PUBLISHED", "assignerShortName": "Patchstack", "dateReserved": "2026-02-17T13:23:18.876Z", "datePublished": "2026-03-19T14:49:20.612Z", "dateUpdated": "2026-04-28T16:14:59.730Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "unaffected", "product": "Photography", "vendor": "ThemeGoods", "versions": [{"changes": [{"at": "7.7.6", "status": "unaffected"}], "lessThan": "7.7.6", "status": "affected", "version": "n/a", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Phat RiO - BlueRock | Patchstack Bug Bounty Program"}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Unrestricted Upload of File with Dangerous Type vulnerability in ThemeGoods Photography allows Path Traversal.<p>This issue affects Photography: from n/a before 7.7.6.</p>"}], "value": "Unrestricted Upload of File with Dangerous Type vulnerability in ThemeGoods Photography allows Path Traversal.This issue affects Photography: from n/a before 7.7.6."}], "impacts": [{"capecId": "CAPEC-126", "descriptions": [{"lang": "en", "value": "CAPEC-126 Path Traversal"}]}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-434", "description": "CWE-434 Unrestricted Upload of File with Dangerous Type", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-04-28T16:14:59.730Z"}, "references": [{"tags": ["vdb-entry"], "url": "https://patchstack.com/database/wordpress/theme/photography/vulnerability/wordpress-photography-theme-7-7-5-arbitrary-file-upload-vulnerability?_s_id=cve"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Update the WordPress Photography theme to the latest available version (at least 7.7.6)."}], "value": "Update the WordPress Photography theme to the latest available version (at least 7.7.6)."}], "source": {"discovery": "EXTERNAL"}, "title": "WordPress Photography theme < 7.7.6 - Arbitrary File Upload vulnerability", "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-27043", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-19T15:07:29.885127Z"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-24T15:55:59.715Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-27043", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-19T15:07:29.885127Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-19T15:07:49.390Z"}}], "cna": {"title": "WordPress Photography theme < 7.7.6 - Arbitrary File Upload vulnerability", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Phat RiO - BlueRock | Patchstack Bug Bounty Program"}], "impacts": [{"capecId": "CAPEC-126", "descriptions": [{"lang": "en", "value": "CAPEC-126 Path Traversal"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "ThemeGoods", "product": "Photography", "versions": [{"status": "affected", "changes": [{"at": "7.7.6", "status": "unaffected"}], "version": "n/a", "lessThan": "7.7.6", "versionType": "custom"}], "defaultStatus": "unaffected"}], "solutions": [{"lang": "en", "value": "Update the WordPress Photography theme to the latest available version (at least 7.7.6).", "supportingMedia": [{"type": "text/html", "value": "Update the WordPress Photography theme to the latest available version (at least 7.7.6).", "base64": false}]}], "references": [{"url": "https://patchstack.com/database/wordpress/theme/photography/vulnerability/wordpress-photography-theme-7-7-5-arbitrary-file-upload-vulnerability?_s_id=cve", "tags": ["vdb-entry"]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "Unrestricted Upload of File with Dangerous Type vulnerability in ThemeGoods Photography allows Path Traversal.This issue affects Photography: from n/a before 7.7.6.", "supportingMedia": [{"type": "text/html", "value": "Unrestricted Upload of File with Dangerous Type vulnerability in ThemeGoods Photography allows Path Traversal.<p>This issue affects Photography: from n/a before 7.7.6.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-434", "description": "CWE-434 Unrestricted Upload of File with Dangerous Type"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-04-28T16:14:59.730Z"}}}, "cveMetadata": {"cveId": "CVE-2026-27043", "state": "PUBLISHED", "dateUpdated": "2026-04-28T16:14:59.730Z", "dateReserved": "2026-02-17T13:23:18.876Z", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "datePublished": "2026-03-19T14:49:20.612Z", "assignerShortName": "Patchstack"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Unrestricted Upload of File with Dangerous Type vulnerability in ThemeGoods Photography allows Path Traversal.This issue affects Photography: from n/a before 7.7.6."}, {"lang": "es", "value": "Una vulnerabilidad de Carga sin Restricciones de Archivo con Tipo Peligroso en ThemeGoods Photography permite el salto de ruta. Este problema afecta a Photography: desde n/a hasta 7.7.5."}], "id": "CVE-2026-27043", "lastModified": "2026-04-28T19:37:11.433", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 7.2, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "HIGH", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 1.2, "impactScore": 5.9, "source": "audit@patchstack.com", "type": "Secondary"}]}, "published": "2026-03-19T15:16:24.083", "references": [{"source": "audit@patchstack.com", "url": "https://patchstack.com/database/wordpress/theme/photography/vulnerability/wordpress-photography-theme-7-7-5-arbitrary-file-upload-vulnerability?_s_id=cve"}], "sourceIdentifier": "audit@patchstack.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-434"}], "source": "audit@patchstack.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,7.7.5]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "Photography", "source": "cna", "vendor": "ThemeGoods"}, "product": "photography", "vendor": "themegoods"}, {"configurations": [{"platform": null, "status": "unaffected", "versions": null}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "product": "wordpress", "vendor": "wordpress"}], "analysis": {"en": {"generated_at": "2026-04-28T22:12:35.969734+00:00", "value": {"mitigation_remediation": ["Upgrade the Photography theme to version 7.7.6 or later.", "Immediately delete or quarantine all uploaded files added before the upgrade, as they may contain malware.", "While the upgrade is pending, disable the theme\u2019s file upload feature or enforce strict file\u2011type restrictions and implement filesystem permissions or server rules that prevent execution of uploaded files."], "summary": {"action": "Patch", "impact": "Arbitrary File Upload leading to potential remote code execution"}, "threat_synthesis": {"affected_systems": "ThemeGoods Photography WordPress theme versions earlier than 7.7.6 are affected. Any WordPress site using those releases is exposed to the described risk.", "description_and_impact": "The Photography theme\u2019s upload functionality permits files of any type to be uploaded without proper validation. This unrestricted upload coupled with path traversal allows an attacker to place malicious files on the server. If such files are executable, the attacker could achieve remote code execution, compromising the entire site. This vulnerability exemplifies invalid input handling (CWE\u2011434).", "risk_and_exploitability": "The CVSS score of 7.2 classifies the flaw as high severity. The EPSS score is below 1\u202f%, indicating that exploitation is currently uncommon, and the vulnerability is not listed in the national Known Exploited Vulnerabilities catalog. Based on the description, the likely attack vector is the theme\u2019s web\u2011based file upload form; an attacker would submit a crafted file that bypasses type checks and uses path traversal to place it on the server where it could be executed."}}}}, "created": "2026-03-20T08:56:44.601546+00:00", "updated": "2026-04-28T22:15:41.371776+00:00", "vendors": ["themegoods", "themegoods$PRODUCT$photography", "wordpress", "wordpress$PRODUCT$wordpress"]}