What is CVE-2025-10268?

CVE-2025-10268 is a medium-severity vulnerability in Printcart Web To Print Product Designer For Woocommerce, classified under CWE-22 IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY ('PATH TRAVERSAL'). CVSS score: 5.3/10. Published 2026-06-26.

How severe is CVE-2025-10268?

Medium severity. CVSS v3 base score is 5.3 out of 10.

Vulnerability in Printcart Web To Print Product Designer For Woocommerce

CVE-2025-10268

The Printcart Web to Print Product Designer for WooCommerce WordPress plugin through 2.4.8 is vulnerable to path traversal which makes it possible for the attacker to retrieve the directory listing for arbitrary directories on the server.

EPSS: 0.002 (5.3th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.3 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N.

Affected products

Unknown Printcart Web To Print Product Designer For Woocommerce — versions 0

References

contact@wpscan.com (technical-description, exploit, vdb-entry)

Frequently asked questions

What is CVE-2025-10268?: CVE-2025-10268 is a medium-severity vulnerability in Printcart Web To Print Product Designer For Woocommerce, classified under CWE-22 IMPROPER LIMITATION OF A PATHNAME TO A RESTRICTED DIRECTORY ('PATH TRAVERSAL'). CVSS score: 5.3/10. Published 2026-06-26.
How severe is CVE-2025-10268?: Medium severity. CVSS v3 base score is 5.3 out of 10.