CVE-2025-8570

CRITICAL

BeyondCart Connector <2.1.0 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2025-8570. PoCs published by Boshe99, Nxploited.

AI-analyzed exploit summary The repository contains functional exploit code for CVE-2025-8570, targeting a WordPress plugin (3DPrint Lite 1.9.1.4) with an arbitrary file upload vulnerability. The Python script demonstrates the vulnerability by uploading a file to a vulnerable endpoint.

Description

The BeyondCart Connector plugin for WordPress is vulnerable to Privilege Escalation due to improper JWT secret management and authorization within the determine_current_user filter in versions 1.4.2 through 3.0.1. This makes it possible for unauthenticated attackers to craft valid tokens and assume any user’s identity.

Exploits (2)

github WORKING POC

by Boshe99 · pythonpoc

https://github.com/Boshe99/CVE-Exploits/tree/main/CVE-2025-8570

View Code ZIP pw:eip

The repository contains functional exploit code for CVE-2025-8570, targeting a WordPress plugin (3DPrint Lite 1.9.1.4) with an arbitrary file upload vulnerability. The Python script demonstrates the vulnerability by uploading a file to a vulnerable endpoint.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: WordPress Plugin 3DPrint Lite 1.9.1.4

No auth needed

Prerequisites: target URL · file to upload

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 27, 2026 Full analysis →

nomisec WORKING POC

by Nxploited · poc

https://github.com/Nxploited/CVE-2025-8570

View Code ZIP pw:eip

The repository contains a functional Python exploit for CVE-2025-8570, which targets a JWT secret misconfiguration in the BeyondCart Connector WordPress plugin, allowing unauthenticated privilege escalation to administrator.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Moderate

Reliability

Reliable

Target: BeyondCart Connector WordPress plugin <= 2.1.0

No auth needed

Prerequisites: Python 3.x · requests library · pyjwt library · Target running vulnerable BeyondCart Connector plugin

MITRE ATT&CK

T1550.001 - Application Access Token

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3

Core References

Product

https://wordpress.org/plugins/beyondcart/#developers

https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3365845%40beyondcart&new=3365845%40beyondcart&sfp_email=&sfph_mail=

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/d0dd4fc0-1c6a-4556-b219-893563a27a69?source=cve

Scores

CVSS v3 9.8

EPSS 0.0060

EPSS Percentile 43.6%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-798

Status published

Products (2)

beyondcart/BeyondCart Connector < 2.1.0

beyondcart/BeyondCart Connector < 3.0.1

Published Sep 11, 2025

Tracked Since Feb 18, 2026