{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-27043", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "state": "PUBLISHED", "assignerShortName": "Patchstack", "dateReserved": "2026-02-17T13:23:18.876Z", "datePublished": "2026-03-19T14:49:20.612Z", "dateUpdated": "2026-04-01T16:00:43.223Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://wordpress.org/plugins", "defaultStatus": "unaffected", "packageName": "photography", "product": "Photography", "vendor": "ThemeGoods", "versions": [{"lessThanOrEqual": "7.7.5", "status": "affected", "version": "0", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "Phat RiO | Patchstack Bug Bounty Program"}], "datePublic": "2026-04-01T16:44:02.493Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Unrestricted Upload of File with Dangerous Type vulnerability in ThemeGoods Photography photography allows Path Traversal.<p>This issue affects Photography: from n/a through <= 7.7.5.</p>"}], "value": "Unrestricted Upload of File with Dangerous Type vulnerability in ThemeGoods Photography photography allows Path Traversal.This issue affects Photography: from n/a through <= 7.7.5."}], "impacts": [{"capecId": "CAPEC-126", "descriptions": [{"lang": "en", "value": "Path Traversal"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-434", "description": "Unrestricted Upload of File with Dangerous Type", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-04-01T16:00:43.223Z"}, "references": [{"tags": ["vdb-entry"], "url": "https://patchstack.com/database/Wordpress/Theme/photography/vulnerability/wordpress-photography-theme-7-7-5-arbitrary-file-upload-vulnerability?_s_id=cve"}], "title": "WordPress Photography theme <= 7.7.5 - Arbitrary File Upload vulnerability"}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-19T15:07:29.885127Z", "id": "CVE-2026-27043", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-19T15:09:16.035Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-27043", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "version": "2.0.3", "timestamp": "2026-03-19T15:07:29.885127Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-19T15:07:49.390Z"}}], "cna": {"title": "WordPress Photography theme <= 7.7.5 - Arbitrary File Upload vulnerability", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "user": "00000000-0000-4000-9000-000000000000", "value": "Phat RiO - BlueRock | Patchstack Bug Bounty Program"}], "impacts": [{"capecId": "CAPEC-126", "descriptions": [{"lang": "en", "value": "CAPEC-126 Path Traversal"}]}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 7.2, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "HIGH", "confidentialityImpact": "HIGH"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "ThemeGoods", "product": "Photography", "versions": [{"status": "affected", "version": "n/a", "versionType": "custom", "lessThanOrEqual": "7.7.5"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://patchstack.com/database/wordpress/theme/photography/vulnerability/wordpress-photography-theme-7-7-5-arbitrary-file-upload-vulnerability?_s_id=cve", "tags": ["vdb-entry"]}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "Unrestricted Upload of File with Dangerous Type vulnerability in ThemeGoods Photography allows Path Traversal.This issue affects Photography: from n/a through 7.7.5.", "supportingMedia": [{"type": "text/html", "value": "Unrestricted Upload of File with Dangerous Type vulnerability in ThemeGoods Photography allows Path Traversal.<p>This issue affects Photography: from n/a through 7.7.5.</p>", "base64": false}]}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-434", "description": "CWE-434 Unrestricted Upload of File with Dangerous Type"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-03-19T14:49:20.612Z"}}}, "cveMetadata": {"cveId": "CVE-2026-27043", "state": "PUBLISHED", "dateUpdated": "2026-03-19T15:09:16.035Z", "dateReserved": "2026-02-17T13:23:18.876Z", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "datePublished": "2026-03-19T14:49:20.612Z", "assignerShortName": "Patchstack"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "Unrestricted Upload of File with Dangerous Type vulnerability in ThemeGoods Photography photography allows Path Traversal.This issue affects Photography: from n/a through <= 7.7.5."}, {"lang": "es", "value": "Una vulnerabilidad de Carga sin Restricciones de Archivo con Tipo Peligroso en ThemeGoods Photography permite el salto de ruta. Este problema afecta a Photography: desde n/a hasta 7.7.5."}], "id": "CVE-2026-27043", "lastModified": "2026-04-01T17:28:36.503", "metrics": {}, "published": "2026-03-19T15:16:24.083", "references": [{"source": "audit@patchstack.com", "url": "https://patchstack.com/database/Wordpress/Theme/photography/vulnerability/wordpress-photography-theme-7-7-5-arbitrary-file-upload-vulnerability?_s_id=cve"}], "sourceIdentifier": "audit@patchstack.com", "vulnStatus": "Awaiting Analysis", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-434"}], "source": "audit@patchstack.com", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "generic", "value": "[0,7.7.5]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "matching", "scores": [{"score": 100.0, "source": "matching"}]}, "original": {"product": "Photography", "source": "cna", "vendor": "ThemeGoods"}, "product": "photography", "vendor": "themegoods"}, {"configurations": [{"platform": null, "status": "unaffected", "versions": null}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "product": "wordpress", "vendor": "wordpress"}], "analysis": {"en": {"generated_at": "2026-03-19T16:12:38.656773+00:00", "value": {"mitigation_remediation": ["Update the ThemeGoods Photography theme to version 7.8.0 or later, which removes the unrestricted upload flaw.", "If an immediate theme upgrade is not possible, disable or remove the theme\u2019s file upload interface until a patch can be applied.", "Verify that the upload directory has the correct permissions and that no executable scripts can run from it.", "Enable server\u2011side validation to allow only trusted file types and reject dangerous extensions."], "summary": {"action": "Apply Patch", "impact": "Remote Code Execution"}, "threat_synthesis": {"affected_systems": "All installations of the ThemeGoods Photography theme from the first release up through version 7.7.5 are affected. There is no specific version list beyond this upper bound provided, so any version until and including 7.7.5 is vulnerable.", "description_and_impact": "The vulnerability is an Unrestricted Upload of File with Dangerous Type (CWE-434) in the ThemeGoods Photography WordPress theme that allows an attacker to upload arbitrary files, including executable scripts. The vulnerable upload mechanism also permits path traversal, enabling the uploaded file to be stored outside the intended upload directory. If a malicious script such as PHP or a web shell reaches the webroot, the attacker can execute code with the permissions of the web server, leading to full compromise of the affected site.", "risk_and_exploitability": "The CVSS score of 7.2 indicates a high severity level, with the main vector being remote via a web request to the theme\u2019s upload endpoint. EPSS data is not available, so the probability of exploitation cannot be quantified precisely. The vulnerability is not listed in the CISA KEV catalog, but the lack of exploitation data does not diminish the risk, as typical WordPress users still have an exposed upload point that can be leveraged by attackers. The attack requires that an attacker can submit a file through the theme\u2019s upload form, usually achievable by any authenticated user with upload privileges or potentially unauthenticated if the form is exposed."}}}}, "created": "2026-03-20T08:56:44.601546+00:00", "updated": "2026-03-20T14:14:49.342860+00:00", "vendors": ["themegoods", "themegoods$PRODUCT$photography", "wordpress", "wordpress$PRODUCT$wordpress"]}