Sunshine Photo Cart Allows Sensitive Data to be Retrieved

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

Sunshine Photo Cart Allows Sensitive Data to be Retrieved

CVE-2026-39564

Summary

A security flaw in Sunshine Photo Cart software allows malicious actors to access sensitive information sent with data. This affects users of Sunshine Photo Cart versions prior to 3.6.2. To protect yourself, update to the latest version as soon as possible.

Original title

Insertion of Sensitive Information Into Sent Data vulnerability in sunshinephotocart Sunshine Photo Cart sunshine-photo-cart allows Retrieve Embedded Sensitive Data.This issue affects Sunshine Phot...

Original description

Vulnerability type

CWE-201

https://patchstack.com/database/Wordpress/Plugin/sunshine-photo-cart/vulnerabili...

Published: 8 Apr 2026 · Updated: 9 Apr 2026 · First seen: 8 Apr 2026