CVE-2025-32202

Name of the Vulnerable Software and Affected Versions: Insert or Embed Articulate Content into WordPress versions 4.3000000025 and earlier

Description: The issue allows for the unrestricted upload of files with dangerous types, enabling an attacker to upload a web shell to a web server. This can be exploited by uploading malicious files to the server.

Recommendations: For versions 4.3000000025 and earlier, consider disabling the file upload feature until a patch is available to prevent the upload of malicious files. Restrict access to the upload functionality to minimize the risk of exploitation. Avoid using the plugin until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.