CVE-2025-26967 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Deserialization of Untrusted Data vulnerability in Stiofan Events Calendar for GeoDirectory events-for-geodirectory allows Object Injection.This issue affects E…
High CVSS: 8.8

CVE-2025-26967

Deserialization of Untrusted Data vulnerability in Stiofan Events Calendar for GeoDirectory events-for-geodirectory allows Object Injection.This issue affects Events Calendar for GeoDirectory: from n/a through <= 2.3.14.
Vendor
Wpgeodirectory
Product
Events Calendar*
CWE
CWE-502
Yayın Tarihi
2025-03-03 14:15:56
Güncelleme
2026-04-01 17:19:15
Source Identifier
audit@patchstack.com
KEV Date Added
-

Kategoriler

CWE-502 Events Calendar* HIGH Wpgeodirectory 2025

Referanslar

https://patchstack.com/database/Wordpress/Plugin/events-for-geodirectory/vulnerability/wordpress-events-calendar-for-geodirectory-plugin-2-3-14-php-object-injection-vulnerability?_s_id=cve