4 matches found
CVE-2026-57313
CVE-2026-57313 concerns a Subscriber XSS vulnerability in the WordPress plugin SureCart up to version 4.2.2 . The public records describe an XSS issue affecting subscribers, but do not provide concrete exploit scenarios, affected subcomponents, or a detailed root cause beyond the general class of...
CVE-2026-39488 WordPress SureCart plugin <= 4.0.2 - Broken Access Control vulnerability
Missing Authorization vulnerability in SureCart SureCart surecart allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SureCart: from n/a through = 4.0.2...
WordPress SureCart plugin <= 4.0.2 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin SureCart versions = 4.0.2...
WordPress SureCart Plugin <= 2.29.3 is vulnerable to Cross Site Scripting (XSS)
Software SureCart Type Plugin Vulnerable versions = 2.29.3 Fixed in 2.29.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-43970 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 031e83213ccc Credits Le Ngoc Anh Required privilege...