Home

Description

The Printcart Web to Print Product Designer for WooCommerce WordPress plugin through 2.4.8 is vulnerable to path traversal which makes it possible for the attacker to retrieve the directory listing for arbitrary directories on the server.

PUBLISHED Reserved 2025-09-11 | Published 2026-06-26 | Updated 2026-06-26 | Assigner WPScan

Problem types

CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Product status

Default status
unknown

Any version
affected

Credits

D01EXPLOIT OFFICIAL finder

WPScan coordinator

References

wpscan.com/...rability/0cff6fb3-339b-4eb6-969b-b3a43613cc71/ exploit vdb-entry technical-description

cve.org (CVE-2025-10268)

nvd.nist.gov (CVE-2025-10268)

Download JSON