CVE-2026-39632

The CVE-2026-39632 entry concerns the WordPress ThemeGoods Grand Blog (grandblog) theme, affected versions up to 3.1. The vulnerability is a Cross-Site Request Forgery (CSRF) in Grand Blog that allows unauthorized actions initiated by forged requests. The connected Red Hat and EU/NVD records conf...

CVE-2026-39632 WordPress Grand Blog theme <= 3.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ThemeGoods Grand Blog grandblog allows Cross Site Request Forgery.This issue affects Grand Blog: from n/a through = 3.1...

CVE-2026-24961

CVE-2026-24961 is a Server-Side Request Forgery (SSRF) affecting ThemeGoods WordPress Grand Blog theme (Grand Blog) versions prior to 3.1.5, where the grandblog component is vulnerable. The root cause is SSRF in Grand Blog prior to 3.1.5, enabling an attacker to trigger requests from the server. ...

CVE-2026-24961 WordPress Grand Blog theme < 3.1.5 - Server Side Request Forgery (SSRF) vulnerability

Server-Side Request Forgery SSRF vulnerability in ThemeGoods Grand Blog grandblog allows Server Side Request Forgery.This issue affects Grand Blog: from n/a through 3.1.5...

WordPress Grand Blog theme < 3.1.5 - Server Side Request Forgery (SSRF) vulnerability

Server Side Request Forgery SSRF vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Grand Blog versions 3.1.5...