CVE-2025-60230NVD

Vulnerability Summary

Deserialization of Untrusted Data vulnerability in Themeton The Barber Shop allows Object Injection.

This issue affects The Barber Shop: from n/a through 1.9.

Severity Level

CRITICAL(9.8)

Published Date

Jun 17, 2026

Last Modified

Jun 17, 2026

Exploitation Status

No confirmed exploitation yet

EPSS Score (30-Day)

Data Pending

Root Weakness (CWE)

N/A

CVSS v3.1 Base Metrics

Attack VectorNetwork

Attack ComplexityLow

Privileges RequiredNone

User InteractionNone

ScopeUnchanged

ConfidentialityHigh

IntegrityHigh

AvailabilityHigh

External References

https://patchstack.com/database/wordpress/theme/nrgbarbershop/vulnerability/wordpress-the-barber-shop-theme-1-9-php-object-injection-vulnerability?_s_id=cve