CVE-2025-9286

CRITICAL

Appy Pie Connect <1.1.2 - Privilege Escalation

Title source: llm

Exploitation Summary

EIP tracks 2 public exploits for CVE-2025-9286. PoCs published by Boshe99, Nxploited.

AI-analyzed exploit summary The repository contains functional exploit code for CVE-2025-9286, targeting a WordPress plugin (3DPrint Lite 1.9.1.4) with an arbitrary file upload vulnerability. The Python script demonstrates the ability to upload malicious files to a vulnerable target.

Description

The Appy Pie Connect for WooCommerce plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization within the reset_user_password() REST handler in all versions up to, and including, 1.1.2. This makes it possible for unauthenticated attackers to to reset the password of arbitrary users, including administrators, thereby gaining administrative access.

Exploits (2)

github WORKING POC

by Boshe99 · pythonpoc

https://github.com/Boshe99/CVE-Exploits/tree/main/CVE-2025-9286

View Code ZIP pw:eip

The repository contains functional exploit code for CVE-2025-9286, targeting a WordPress plugin (3DPrint Lite 1.9.1.4) with an arbitrary file upload vulnerability. The Python script demonstrates the ability to upload malicious files to a vulnerable target.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: WordPress Plugin 3DPrint Lite 1.9.1.4

No auth needed

Prerequisites: Vulnerable WordPress plugin installed · Network access to the target

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 27, 2026 Full analysis →

github WORKING POC

by Nxploited · pythonpoc

https://github.com/Nxploited/CVE-2025-9286

View Code ZIP pw:eip

The repository contains a functional Python exploit for CVE-2025-9286, which targets a missing authorization vulnerability in the Appy Pie Connect for WooCommerce plugin (versions <= 1.1.2). The exploit resets arbitrary user passwords via an unauthenticated REST API endpoint.

Classification

Working Poc 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: Appy Pie Connect for WooCommerce <= 1.1.2

No auth needed

Prerequisites: Target must have the vulnerable plugin installed · Target user ID must be known

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (4)

Core 4

Core References

Product

https://plugins.trac.wordpress.org/browser/appy-pie-connect-for-woocommerce/trunk/connect-woocommerce-rest-api.php

Product

https://wordpress.org/plugins/appy-pie-connect-for-woocommerce/

https://plugins.trac.wordpress.org/changeset/3385150/

Third Party Advisory

https://www.wordfence.com/threat-intel/vulnerabilities/id/36fb5b8d-1ea4-45c2-8639-b229efdb57db?source=cve

Scores

CVSS v3 9.8

EPSS 0.0043

EPSS Percentile 33.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-620

Status published

Products (1)

hancock11/Appy Pie Connect for WooCommerce < 1.1.2

Published Oct 03, 2025

Tracked Since Feb 18, 2026