CVE Catalog

CVE-2025-10268

MediumCVSS 5.3
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.16%

5th percentile — higher than 5% of all known CVEs

Summary

The Printcart Web to Print Product Designer for WooCommerce WordPress plugin through version 2.4.8 contains a path traversal vulnerability, allowing an attacker to retrieve directory listings for arbitrary directories on the server.

Risk Assessment

An attacker can access the server's directory structure, potentially leading to disclosure of sensitive configuration information or other files.

Recommendation

It is recommended to immediately update the plugin to the latest available version that fixes this vulnerability.

Original NVD description (English source)

The Printcart Web to Print Product Designer for WooCommerce WordPress plugin through 2.4.8 is vulnerable to path traversal which makes it possible for the attacker to retrieve the directory listing for arbitrary directories on the server.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS