SeventhQueen Sweet Date allows malicious data injection

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

9.8

SeventhQueen Sweet Date allows malicious data injection

CVE-2026-27417

Summary

SeventhQueen Sweet Date, a social networking platform, has a security flaw that could allow hackers to inject malicious data into the system. This could allow an attacker to potentially take control of the system or access sensitive information. Users of Sweet Date should update to the latest version, 4.0.1, to fix this issue.

Original title

Deserialization of Untrusted Data vulnerability in SeventhQueen Sweet Date sweetdate allows Object Injection.This issue affects Sweet Date: from n/a through < 4.0.1.

Original description

Deserialization of Untrusted Data vulnerability in SeventhQueen Sweet Date sweetdate allows Object Injection.This issue affects Sweet Date: from n/a through < 4.0.1.

nvd CVSS3.1 9.8

Vulnerability type

CWE-502 Deserialization of Untrusted Data

https://patchstack.com/database/Wordpress/Theme/sweetdate/vulnerability/wordpres...

Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026