4 matches found
CVE-2024-30221
Deserialization of Untrusted Data vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart.This issue affects Sunshine Photo Cart: from n/a through = 3.1.1...
CVE-2024-30221
Deserialization of Untrusted Data vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart.This issue affects Sunshine Photo Cart: from n/a through = 3.1.1...
CVE-2024-30221
CVE-2024-30221 concerns the WordPress plugin Sunshine Photo Cart, affected until version 3.1.1. The vulnerability is a PHP Object Injection via deserialization of untrusted data, allowing unauthenticated attackers to potentially inject objects. The issue is fixed in version 3.1.2; users should up...
WordPress Sunshine Photo Cart Plugin <= 3.1.1 is vulnerable to PHP Object Injection
Software Sunshine Photo Cart Type Plugin Vulnerable versions = 3.1.1 Fixed in 3.1.2 OWASP Top 10 A1: Broken Access Control Classification PHP Object Injection CVE CVE-2024-30221 Patch priority Medium CVSS severity Medium 5.4 Developer WP Sunshine PSID 7b2cd8d53b2f Credits CatFather Required...