Prestige Untrusted Data Can Be Injected, Causing Malicious Execution

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

9.8

Prestige Untrusted Data Can Be Injected, Causing Malicious Execution

CVE-2025-69329

Summary

The Prestige software is vulnerable to a security threat that could allow an attacker to inject malicious code into the system. This could lead to unauthorized actions being taken on the system. To stay safe, update Prestige to version 1.4.1 or higher.

Original title

Deserialization of Untrusted Data vulnerability in Jthemes Prestige prestige allows Object Injection.This issue affects Prestige: from n/a through < 1.4.1.

Original description

Deserialization of Untrusted Data vulnerability in Jthemes Prestige prestige allows Object Injection.This issue affects Prestige: from n/a through < 1.4.1.

nvd CVSS3.1 9.8

Vulnerability type

CWE-502 Deserialization of Untrusted Data

https://patchstack.com/database/Wordpress/Theme/prestige/vulnerability/wordpress...

Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026