CVE-2026-39512

Description

Unauthenticated SQL Injection in GeoDirectory <= 2.8.152 versions.

CVSS breakdown

Affected products

• Paolo / GeoDirectoryn/a – 2.8.152

References

• MISChttps://patchstack.com/database/wordpress/plugin/geodirectory/vulnerability/wordpress-geodirectory-plugin-2-8-152-sql-injection-vulnerability?_s_id=cve