CVE-2025-12833 | GeoDirectory Plugin up to 2.8.139 on WordPress post_attachment_upload resource injection

Inserito da Angelo Barbosa | Nov 11, 2025 | CVE

A vulnerability marked as problematic has been reported in GeoDirectory Plugin up to 2.8.139 on WordPress. This vulnerability affects the function post_attachment_upload. Performing manipulation results in improper control of resource identifiers.

This vulnerability is cataloged as CVE-2025-12833. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-12833 | GeoDirectory Plugin up to 2.8.139 on WordPress post_attachment_upload resource injection

Post correlati

CVE-2024-12373 | Rockwell Automation PowerMonitor 1000 Remote buffer overflow (icsa-24-352-03)

CVE-2024-29318 | Volmarg Personal Management System 1.4.64 SVG File cross site scripting

CVE-2023-52099 | Huawei HarmonyOS/EMUI NMS Module access control

CVE-2024-24980 | Intel Xeon protection mechanism (intel-sa-01100)