CVE-2024-49697 WordPress Sunshine Photo Cart plugin <= 3.2.9 - Broken Access Control vulnerability

Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sunshine Photo Cart: from n/a through = 3.2.9...

CVE-2024-47314

Missing Authorization vulnerability in WP Sunshine Sunshine Photo Cart allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sunshine Photo Cart: from n/a through 3.2.8...

WordPress Sunshine Photo Cart Plugin <= 3.2.9 is vulnerable to Open Redirection

Software Sunshine Photo Cart Type Plugin Vulnerable versions = 3.2.9 Fixed in 3.2.11 OWASP Top 10 A5: Security Misconfiguration Classification Open Redirection CVE CVE-2024-50463 Patch priority Low CVSS severity Low 4.7 Developer WP Sunshine PSID 2d6f2e33d0d9 Credits Muhamad Agil Fachrian Require...

WordPress Sunshine Photo Cart Plugin <= 3.2.9 is vulnerable to Broken Access Control

Software Sunshine Photo Cart Type Plugin Vulnerable versions = 3.2.9 Fixed in 3.2.10 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-49697 Patch priority Low CVSS severity Low 4.3 Developer WP Sunshine PSID 523fa4ccc0db Credits Trương Hữu Phúc truonghuuphu...

WordPress Sunshine Photo Cart Plugin <= 3.2.8 is vulnerable to Broken Access Control

Software Sunshine Photo Cart Type Plugin Vulnerable versions = 3.2.8 Fixed in 3.2.9 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-47314 Patch priority Medium CVSS severity Medium 7.1 Developer WP Sunshine PSID ce1d02e75c65 Credits Trương Hữu Phúc...

WordPress Sunshine Photo Cart Plugin <= 3.2.9 is vulnerable to Broken Access Control

Software Sunshine Photo Cart Type Plugin Vulnerable versions = 3.2.9 Fixed in 3.2.10 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-44038 Patch priority Low CVSS severity Low 5.3 Developer WP Sunshine PSID d5d77606eb75 Credits Majed Refaea Required...

WordPress Sunshine Photo Cart Plugin <= 3.2.5 is vulnerable to Cross Site Scripting (XSS)

Software Sunshine Photo Cart Type Plugin Vulnerable versions = 3.2.5 Fixed in 3.2.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43971 Patch priority Medium CVSS severity Medium 7.1 Developer WP Sunshine PSID abc8080f12fe Credits Le Ngoc Anh Required privilege...

WordPress Sunshine Photo Cart Plugin <= 3.1.1 is vulnerable to PHP Object Injection

Software Sunshine Photo Cart Type Plugin Vulnerable versions = 3.1.1 Fixed in 3.1.2 OWASP Top 10 A1: Broken Access Control Classification PHP Object Injection CVE CVE-2024-30221 Patch priority Medium CVSS severity Medium 5.4 Developer WP Sunshine PSID 7b2cd8d53b2f Credits CatFather Required...

WordPress Sunshine Photo Cart Plugin <= 3.0.24 is vulnerable to Sensitive Data Exposure

Software Sunshine Photo Cart Type Plugin Vulnerable versions = 3.0.24 Fixed in 3.1 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2024-1294 Patch priority Low CVSS severity Low 5.3 Developer WP Sunshine PSID b62f43ca815f Credits Francesco Carlucci Required...