Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
6.5
Sunshine Photo Cart: Unauthorized Access to Sensitive Data
CVE-2025-67973
Summary
Sunshine Photo Cart versions 1 through 3.5.6.2 are vulnerable to unauthorized access to sensitive data. This means that an attacker could potentially access and modify information they shouldn't have access to. Update to the latest version of Sunshine Photo Cart to fix this issue.
Original title
Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sunshine ...
Original description
Missing Authorization vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sunshine Photo Cart: from n/a through <= 3.5.6.2.
nvd CVSS3.1
6.5
Vulnerability type
CWE-862
Missing Authorization
Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026