Dentario ThemeREX Dentario: Untrusted Data Deserialization Risk

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

9.8

Dentario ThemeREX Dentario: Untrusted Data Deserialization Risk

CVE-2026-27439

Summary

If an attacker can inject malicious data into Dentario, they could potentially execute unauthorized code on your website, leading to unauthorized actions or data exposure. This issue affects all versions of Dentario from not available through 1.5. To protect your site, update to a patched version of Dentario as soon as possible.

Original title

Deserialization of Untrusted Data vulnerability in ThemeREX Dentario dentario allows Object Injection.This issue affects Dentario: from n/a through <= 1.5.

Original description

Deserialization of Untrusted Data vulnerability in ThemeREX Dentario dentario allows Object Injection.This issue affects Dentario: from n/a through <= 1.5.

nvd CVSS3.1 9.8

Vulnerability type

CWE-502 Deserialization of Untrusted Data

https://patchstack.com/database/Wordpress/Theme/dentario/vulnerability/wordpress...

Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026