Themegoods Grand Conference — known CVE vulnerabilities
Every CVE whose affected-product data names Themegoods Grand Conference, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (3)
CVE-2025-39354 — CVSS 9.8 (critical): Deserialization of Untrusted Data vulnerability in ThemeGoods Grand Conference grandconference allows Object Injection.This issue affects…
CVE-2025-64224 — CVSS 7.1 (high): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ThemeGoods Grand Conference Theme…
CVE-2025-60116 — CVSS 5.4 (medium): Missing Authorization vulnerability in ThemeGoods Grand Conference Theme Custom Post Type grandconference-custom-post allows Exploiting…