Object Injection Flaw in BoldThemes Codiqa Theme
CVE-2025-64233

Currently unrated

Key Information:

Vendor

WordPress
Status
Codiqa
Vendor
CVE Published:
18 December 2025

What is CVE-2025-64233?

A vulnerability exists in BoldThemes Codiqa theme, allowing for object injection due to the deserialization of untrusted data. This flaw can lead to potential exploitation, where an attacker could manipulate application data, leading to unauthorized access or execution of malicious code. Affected versions include Codiqa prior to 1.2.8, making it crucial for users to update to the latest version to enhance security.

Affected Version(s)

Codiqa <= n/a

References

https://vdp.patchstack.com/database/Wordpress/Theme/codiq...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Bonds | Patchstack Bug Bounty Program
JSON
.
CVE-2025-64233 : Object Injection Flaw in BoldThemes Codiqa Theme