CVE-2026-24549

Name of the Vulnerable Software and Affected Versions Paolo GeoDirectory versions through 2.8.147

Description A Cross-Site Request Forgery (CSRF) issue exists in Paolo GeoDirectory geodirectory, allowing attackers to perform actions on behalf of authenticated users. This can potentially lead to unauthorized actions within the application.

Recommendations Versions prior to 2.8.147 should be updated.