CVE-2025-13070 — The CSV to SortTable WordPress plugin through 4.2 does not validate some shortcode attributes before using them to generate paths passed to include function/s, allowing any authenticated users such as — CVE Database · The Intelligence Room