Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

SureCart — Vulnerabilities & Security Advisories 3

Browse all 3 CVE security advisories affecting SureCart. AI-powered Chinese analysis, POCs, and references for each vulnerability.

SureCart is an e-commerce platform enabling digital product sales and payment processing. Historically, it has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. The platform has three recorded CVEs, including critical RCE issues in versions prior to 1.0.27 and persistent XSS vulnerabilities in its checkout process. While no major public security incidents have been documented, the consistent pattern of vulnerabilities in core functionality suggests a need for rigorous security testing and prompt patch management, particularly for installations handling sensitive customer payment data.

Found 2 results / 3Clear Filters
Top products by SureCart: SureCart WordPress Ecommerce For Creating Fast Online Stores
CVE IDTitleCVSSSeverityPublished
CVE-2026-39488 WordPress SureCart plugin <= 4.0.2 - Broken Access Control vulnerability — SureCartCWE-862 6.5 Medium2026-04-08
CVE-2024-43970 WordPress SureCart plugin <= 2.29.3 - Reflected Cross Site Scripting (XSS) vulnerability — SureCartCWE-79 7.1 High2024-09-17

This page lists every published CVE security advisory associated with SureCart. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.