A vulnerability was found in WP Import Plugin up to 7.35 on WordPress and classified as critical. Impacted is the function upload_function of the component Bitly Shortlink Handler. Executing manipulation can lead to server-side request forgery.

This vulnerability is tracked as CVE-2025-14627. The attack can be launched remotely. No exploit exists.