CVE-2025-6200 – GeoDirectory Stored Cross-Site Scripting Vulnerability

July 11, 2025

CVE ID : CVE-2025-6200

Published : July 11, 2025, 6:15 a.m. | 3 hours, 22 minutes ago

Description : The GeoDirectory WordPress plugin before 2.8.120 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5028 – ESET Windows Installation File Privilege Escalation Vulnerability

Next Article CVE-2025-30026 – AXIS Camera Station Authentication Bypass Vulnerability

This week in AI dev tools: Gemini API Batch Mode, Amazon SageMaker AI updates, and more (July 11, 2025)

JFrog finds MCP-related vulnerability, highlighting need for stronger focus on security in MCP ecosystem

8 Key Questions Every CEO Should Ask Before Hiring a Node.js Development Company in 2025

Vibe Loop: AI-native reliability engineering for the real world

51% claimed already: This Xbox Edition mechanical keyboard is at its lowest price yet while this sale lasts — Nostalgic green transparency for the win

This RDR2 deal feels like highway robbery — grab the “Wild West masterpiece” today before it rides off into the sunset

Grab these 7 Xbox games all under $40 — you don’t have long before Amazon Prime Day ends, so act fast

After 24 hours with Samsung’s Galaxy Z Flip 7, one big thing stands out

The details of TC39’s last meeting

The details of TC39’s last meeting

Francisco Bergeret Paves the Way Through Strong Leadership at Perficient

Intelligent Automation in the Healthcare Sector with n8n, OpenAI, and Pinecone

51% claimed already: This Xbox Edition mechanical keyboard is at its lowest price yet while this sale lasts — Nostalgic green transparency for the win

51% claimed already: This Xbox Edition mechanical keyboard is at its lowest price yet while this sale lasts — Nostalgic green transparency for the win

This RDR2 deal feels like highway robbery — grab the “Wild West masterpiece” today before it rides off into the sunset

Grab these 7 Xbox games all under $40 — you don’t have long before Amazon Prime Day ends, so act fast

CVE-2025-6200 – GeoDirectory Stored Cross-Site Scripting Vulnerability

Critical Vulnerability in Anthropic’s MCP Exposes Developer Machines to Remote Exploits

Critical Cisco Vulnerability in Unified CM Grants Root Access via Static Credentials

OpenAI’s Sam Altman breaks silence on Microsoft feud with Satya Nadella — citing “points of tension” amid evolution plans

Tangram is an interesting Linux web browser

Rethinking Toxic Data in LLM Pretraining: A Co-Design Approach for Improved Steerability and Detoxification

CVE-2025-7061 – Intelbras InControl CSV Injection Vulnerability

Newer Intel GPU Support Now Available on Ubuntu 24.04 LTS

Rilasciata CachyOS Maggio 2025: Miglioramenti per GPU NVIDIA e Novità per il Gaming

How to make sure Adobe Flash is up-to-date and enabling it on-demand

CVE-2025-3711 – “LCD KVM over IP Switch CL5708IM Stack-based Buffer Overflow Vulnerability”

CVE-2025-6200 – GeoDirectory Stored Cross-Site Scripting Vulnerability

Related Posts