cleantalk
Vulnerabilities and Security Researches

GeoDirectory – WordPress Business Directory Plugin, or Classified Directory, CVE-2026-39512

CVE, Research URL

CVE-2026-39512

Home page URL

Security reports for GeoDirectory – WordPress Business Directory Plugin, or Classified Directory

Application

GeoDirectory – WordPress Business Directory Plugin, or Classified Directory

Published on
Jun 16, 2026
Research Description
Unauthenticated SQL Injection in GeoDirectory <= 2.8.152 versions.
Affected versions
max 2.8.154.
Status
vulnerable
Previous vulnerability researches
Events Calendar for GeoDirectory (CVE-2025-26967) , Mar 05, 2025
Events Calendar for GeoDirectory (CVE-2026-39532) , Apr 23, 2026
Events Calendar for GeoDirectory (CVE-2026-11616) , Jun 10, 2026
GeoDirectory &#8211; WordPress Business Directory Plugin, or Classified Directory (CVE-2026-42671) , May 22, 2026
GeoDirectory &#8211; WordPress Business Directory Plugin, or Classified Directory (CVE-2024-56259) , Jan 03, 2025
New vulnerability
Community Lite Video Chat (fce99c82-3958-4c17-88d3-6e8fa1a11e59) , Jun 16, 2026
Advanced AJAX Product Filters (c5efdac5-06ac-4baa-8c2f-0dd7e6dc1050) , Jun 16, 2026
Advanced AJAX Product Filters (3a563c81d8f23d7675a01ee42f43d5a7e24b7918) , Jun 16, 2026
Advanced AJAX Product Filters (212b7bd37d1d6fe9fb4123bc201baf84cd4ef4c2) , Jun 16, 2026
WP Hide &amp; Security Enhancer (851bbb017a404d05a340abe049ca2259f4034f35) , Jun 16, 2026