A vulnerability identified as problematic has been detected in wpazleen Post Export Import with Media Plugin up to 1.13.1. This affects the function ajax_import_media_start of the file shell.php of the component File Upload/Validation. Performing a manipulation results in unrestricted upload.

This vulnerability is cataloged as CVE-2026-13430. It is possible to initiate the attack remotely. There is no exploit available.