A vulnerability was found in webandprint AR for WooCommerce Plugin up to 8.40 on WordPress and classified as critical. Affected by this issue is some unknown functionality of the component AJAX Handler. Such manipulation of the argument File leads to path traversal.
This vulnerability is listed as CVE-2026-14352. The attack may be performed from remote. There is no available exploit.