All 3 CVE vulnerabilities found in Sunshine Photo Cart – Client Photo Gallery & Photo Proofing for Photographers, with AI-generated Chinese analysis, references, and POCs.
Vendor: sunshinephotocart
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-5482 | Sunshine Photo Cart <= 3.4.11 - Authenticated (Subscriber+) Privilege Escalation CWE-620 | 8.8 | High | 2025-06-04 |
| CVE-2024-1294 | Sunshine Photo Cart: Free Client Galleries for Photographers <= 3.0.24 - Unauthenticated Sensitive Information Exposure via Invoice CWE-284 | 5.3 | Medium | 2024-02-20 |
| CVE-2021-4415 | Sunshine Photo Cart <= 2.8.28 - Cross-Site Request Forgery Bypass CWE-352 | 4.3 | Medium | 2023-07-12 |
All 3 known CVE vulnerabilities affecting Sunshine Photo Cart – Client Photo Gallery & Photo Proofing for Photographers with full Chinese analysis, references, and POCs where available.