Vulnerabilities > Sunshinephotocart > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-10-28 | CVE-2024-50463 | Open Redirect vulnerability in Sunshinephotocart Sunshine Photo Cart URL Redirection to Untrusted Site ('Open Redirect') vulnerability in WP Sunshine Sunshine Photo Cart.This issue affects Sunshine Photo Cart: from n/a through 3.2.9. | 6.1 |
| 2024-09-18 | CVE-2024-43971 | Cross-site Scripting vulnerability in Sunshinephotocart Sunshine Photo Cart Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in WP Sunshine Sunshine Photo Cart allows Reflected XSS.This issue affects Sunshine Photo Cart: from n/a through 3.2.5. | 6.1 |
| 2023-12-20 | CVE-2023-41796 | Unspecified vulnerability in Sunshinephotocart Sunshine Photo Cart Authorization Bypass Through User-Controlled Key vulnerability in WP Sunshine Sunshine Photo Cart: Free Client Galleries for Photographers.This issue affects Sunshine Photo Cart: Free Client Galleries for Photographers: from n/a before 3.0.0. | 6.5 |
| 2023-01-09 | CVE-2022-4301 | Unspecified vulnerability in Sunshinephotocart Sunshine Photo Cart The Sunshine Photo Cart WordPress plugin before 2.9.15 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting. | 6.1 |