A vulnerability was found in Make Connector Plugin up to 1.5.10 on WordPress. It has been classified as critical. Impacted is the function
upload_media. The manipulation leads to unrestricted upload.
This vulnerability is documented as CVE-2025-6085. The attack can be initiated remotely. There is not any exploit available.
