Log out
Get PRO

Latest

Access violation vulnerability in Sunshine Photo Cart 3.0.5

  • Severity: medium-risk
  • Status: Fixed
  • Publication: September 5, 2023

The Sunshine Photo Cart plugin for WordPress has a security vulnerability that could be exploited by unauthenticated attackers. This vulnerability exists in versions 3.0.5 and below, and allows attackers to manipulate orders that they do not have permission to access. This is because of a lack of validation on a key that can be controlled by a user.

Detected in:

Sunshine Photo Cart fixed vulnerable versions: >= * <= 2.9.25
Sunshine Photo Cart: Free Client Galleries for Photographers fixed vulnerable versions:
Sunshine Photo Cart: Free Client Photo Galleries for Photographers fixed vulnerable versions:
Sunshine Photo Cart: Sell photos in WordPress for free fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.