CVE-2025-31830 – WordPress Printus Plugin <= 1.2.6 - Broken Access Control vulnerability

https://notcve.org/view.php?id=CVE-2025-31830

01 Apr 2025 — Missing Authorization vulnerability in Uriahs Victor Printus allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Printus: from n/a through 1.2.6. The Printus – Automatic Printing Plugin for WooCommerce – Print WooCommerce Orders, PDF Invoices, Packaging Slips & More plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to, and including, 1.2.6. This makes it possible for authenticated attackers, wi... • https://patchstack.com/database/wordpress/plugin/printus-cloud-printing-for-woocommerce/vulnerability/wordpress-printus-plugin-1-2-6-broken-access-control-vulnerability?_s_id=cve • CWE-862: Missing Authorization •