CVE-2026-9725

printcart · Printcart Web to Print Product Designer for WooCommerce

The Printcart Web to Print Product Designer for WooCommerce plugin for WordPress is vulnerable to unauthenticated arbitrary file deletion via improper path validation and nonce exposure.

Executive summary

A critical arbitrary file deletion vulnerability in the Printcart WordPress plugin allows unauthenticated attackers to execute unauthorized file operations, potentially leading to remote code execution.

Vulnerability

The plugin fails to perform adequate path validation on the 'nbd_item_key' parameter and fails to properly secure the nonce required for the nbd_save_customer_design action, allowing unauthenticated attackers to delete arbitrary files.

Business impact

This vulnerability is rated 9.1 (Critical) as it facilitates arbitrary file deletion, which can be chained to achieve Remote Code Execution (RCE). The impact includes complete site compromise, data loss, and potential total loss of control over the WordPress server environment, posing a severe threat to business continuity.

Remediation

Immediate Action: Update the Printcart Web to Print Product Designer for WooCommerce plugin to the latest version immediately.

Proactive Monitoring: Monitor server filesystem integrity and review web server logs for suspicious POST requests targeting the plugin's AJAX endpoints.

Compensating Controls: Utilize a Web Application Firewall (WAF) to block requests containing directory traversal sequences or unauthorized attempts to access sensitive plugin functions.

Exploitation status

Public Exploit Available: False

Analyst recommendation

This vulnerability is highly dangerous because it allows unauthenticated attackers to perform destructive actions on the server. Site administrators must update the plugin immediately to the latest patched version to prevent potential RCE and complete site takeover.