A vulnerability was found in creativemindssolutions CM Business Directory Plugin up to 1.5.7 on WordPress. It has been classified as problematic. This affects an unknown part. Performing a manipulation results in cross site scripting.

This vulnerability is cataloged as CVE-2026-8892. It is possible to initiate the attack remotely. There is no exploit available.