CVE-2025-13066 | Demo Importer Plus Plugin up to 2.0.6 on WordPress WXR File unrestricted upload

A vulnerability, which was classified as critical, was found in Demo Importer Plus Plugin up to 2.0.6 on WordPress. This impacts an unknown function of the component WXR File Handler. The manipulation results in unrestricted upload.

This vulnerability is identified as CVE-2025-13066. The attack can be executed remotely. There is not any exploit available.VulDB Recent EntriesRead More