CVE-2026-27369

Name of the Vulnerable Software and Affected Versions BoldThemes Celeste versions through 1.3.6

Description A flaw exists in BoldThemes Celeste that allows for object injection due to deserialization of untrusted data. This issue could potentially allow an attacker to compromise the system.

Recommendations Update BoldThemes Celeste to a version later than 1.3.6.