4 matches found
CVE-2024-43971
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart.This issue affects Sunshine Photo Cart: from n/a through = 3.2.5...
CVE-2024-43971
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart.This issue affects Sunshine Photo Cart: from n/a through = 3.2.5...
CVE-2024-43971
CVE-2024-43971 refers to WP Sunshine Sunshine Photo Cart (WordPress) versions up to 3.2.5 and describes a reflected XSS caused by improper input neutralization during web page generation. Exploitation requires an attacker to craft malicious input, enabling execution of arbitrary scripts in a user...
WordPress Sunshine Photo Cart Plugin <= 3.2.5 is vulnerable to Cross Site Scripting (XSS)
Software Sunshine Photo Cart Type Plugin Vulnerable versions = 3.2.5 Fixed in 3.2.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43971 Patch priority Medium CVSS severity Medium 7.1 Developer WP Sunshine PSID abc8080f12fe Credits Le Ngoc Anh Required privilege...