3 matches found
CVE-2025-2224
The Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on the 'parsequery' function in all versions up to, and including, 8.2. This makes it possible fo...
CVE-2025-2224
CVE-2025-2224 affects Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings for WordPress. The vulnerability arises from a missing capability check in the parse_query function, allowing unauthenticated attackers to update the post_status of any post to 'publish' across al...
CVE-2025-2224 Directorist <= 8.2 - Missing Authorization to Unauthenticated Arbitrary Post Publishing
The Directorist: AI-Powered Business Directory Plugin with Classified Ads Listings plugin for WordPress is vulnerable to unauthorized access and modification of data due to a missing capability check on the 'parsequery' function in all versions up to, and including, 8.2. This makes it possible fo...