cleantalk
Vulnerabilities and Security Researches

Sunshine Photo Cart: Free Client Galleries for Photographers, CVE-2026-42776

CVE, Research URL

CVE-2026-42776

Home page URL

Security reports for Sunshine Photo Cart: Free Client Galleries for Photographers

Application

Sunshine Photo Cart: Free Client Galleries for Photographers

Published on
May 26, 2026
Research Description
Missing Authorization vulnerability in WP Sunshine Sunshine Photo Cart allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Sunshine Photo Cart: from n/a through 3.6.7.
Affected versions
max 3.6.8.
Status
vulnerable
Previous vulnerability researches
WP Newsletter Subscription (CVE-2024-44012) , Sep 28, 2024
Super Simple Subscriptions (CVE-2025-30523) , Mar 26, 2025
Mailgun Subscriptions (CVE-2025-11876) , Jan 11, 2026
Razorpay Subscription Button Elementor Plugin (CVE-2024-13827) , Mar 07, 2025
Newsletter Subscriptions (CVE-2024-11683) , Dec 13, 2024
New vulnerability
Sunshine Photo Cart: Free Client Galleries for Photographers (CVE-2026-42776) , May 28, 2026
WPBakery Page Builder Addons by Livemesh (CVE-2026-2030) , May 28, 2026
WPBakery Page Builder Addons by Livemesh (CVE-2026-3895) , May 28, 2026
LiteSpeed Cache (CVE-2026-3375) , May 28, 2026
WP Search Analytics (CVE-2026-27357) , May 28, 2026