CVE-2025-59002
CVE-2025-59002 affects BM Content Builder (WordPress) up to version 3.16.3.3, enabling authenticated users (Contributor+) to perform Arbitrary File Deletion. The vulnerability has been patched in BM Content Builder 3.16.3.3 and later. Action: upgrade to 3.16.3.3+ to mitigate.