A vulnerability has been found in WPBookit Plugin up to 1.0.4 on WordPress and classified as critical. Affected by this vulnerability is the function
handle_image_upload
. The manipulation leads to unrestricted upload.
This vulnerability is known as CVE-2025-6057. The attack can be launched remotely. There is no exploit available.