CVE-2026-39532

Description

Contributor PHP Object Injection in Events Calendar for GeoDirectory <= 2.3.25 versions.

References

• https://patchstack.com/database/wordpress/plugin/events-for-geodirectory/vulnerability/wordpress-events-calendar-for-geodirectory-plugin-2-3-25-php-object-injection-vulnerability?_s_id=cve