Sunshine Photo Cart: Free Client Galleries for Photographers, CVE-2022-4301

CVE, Research URL: CVE-2022-4301
Home page URL: Security reports for Sunshine Photo Cart: Free Client Galleries for Photographers
Application: Sunshine Photo Cart: Free Client Galleries for Photographers
Published on: Jan 10, 2023
Research Description: The Sunshine Photo Cart WordPress plugin before 2.9.15 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting.
Affected versions: Min -, max 2.8.29.
Status: vulnerable