CVE-2025-14627 | WP Import Plugin up to 7.35 on WordPress Bitly Shortlink upload_function server-side request forgery

Inserito da Angelo Barbosa | Gen 1, 2026 | CVE

A vulnerability was found in WP Import Plugin up to 7.35 on WordPress and classified as critical. Impacted is the function upload_function of the component Bitly Shortlink Handler. Executing manipulation can lead to server-side request forgery.

This vulnerability is tracked as CVE-2025-14627. The attack can be launched remotely. No exploit exists.

CVE-2025-14627 | WP Import Plugin up to 7.35 on WordPress Bitly Shortlink upload_function server-side request forgery

Post correlati

CVE-2024-23923 | Alpine Halo9 prh_l2_sar_data_ind use after free

CVE-2024-10254 | Lenovo PC Manager/Browser/App Store heap-based overflow

CVE-2025-4395 | Medtronic MyCareLink Patient Monitor 24952 empty password in configuration file

CVE-2025-3322 | B. Braun OnlineSuite 3.0 expression language injection