Sunshinephotocart Sunshine_photo_cart

16 CVEs affecting Sunshinephotocart Sunshine_photo_cart. Latest disclosed: 2025-06-04. Critical: 1, High: 4.

Top CVEs affecting Sunshinephotocart Sunshine_photo_cart
CVESeverityScorePublishedSummary
CVE-2025-31084Critical9.82025-04-01Deserialization of Untrusted Data vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart allows Object Injection.This issue affects Sunshin…
CVE-2025-5482High8.82025-06-04The Sunshine Photo Cart: Free Client Photo Galleries for Photographers plugin for WordPress is vulnerable to privilege escalation via account takeover in all v…
CVE-2024-47314High7.12024-11-01Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart allows Exploiting Incorrectly Configured Access Control Securi…
CVE-2024-43971High7.12024-09-18Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart…
CVE-2024-30194High7.12024-03-27Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart…
CVE-2022-4301Medium6.12023-01-09The Sunshine Photo Cart WordPress plugin before 2.9.15 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected C…
CVE-2022-45826Medium5.42024-12-13Missing Authorization vulnerability in WP Sunshine Sunshine Photo Cart allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affec…
CVE-2024-30221Medium5.42024-03-28Deserialization of Untrusted Data vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart.This issue affects Sunshine Photo Cart: from n/a t…
CVE-2022-40692Medium5.42023-02-02Cross-Site Request Forgery (CSRF) vulnerability in WP Sunshine Sunshine Photo Cart plugin <= 2.9.13 versions.
CVE-2024-44038Medium5.32024-11-01Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart allows Exploiting Incorrectly Configured Access Control Securi…
CVE-2024-1294Medium5.32024-02-29The Sunshine Photo Cart: Free Client Galleries for Photographers plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, an…
CVE-2023-41796Medium5.32023-12-20Authorization Bypass Through User-Controlled Key vulnerability in WP Sunshine Sunshine Photo Cart: Free Client Galleries for Photographers.This issue affects S…
CVE-2024-50463Medium4.72024-10-28URL Redirection to Untrusted Site ('Open Redirect') vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart.This issue affects Sunshine Phot…
CVE-2024-49697Medium4.32024-11-19Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart allows Exploiting Incorrectly Configured Access Control Securi…
CVE-2024-43136Medium4.32024-11-01Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart.This issue affects Sunshine Photo Cart: from n/a through <= 3…
CVE-2021-4415Medium4.32023-07-12The Sunshine Photo Cart plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.8.28 This is due to missing or inc…