PatchSiren

SureCart CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

HIGH SureCart CVE published 2026-06-26

CVE-2026-57314

CVE-2026-57314 is a HIGH-severity vulnerability in the SureCart plugin, affecting versions up to 4.3.2. This Unauthenticated Cross Site Scripting (XSS) vulnerability has a CVSS score of 7.1 and was published on June 26, 2026. The vulnerability allows attackers to inject malicious scripts into web pages viewed by other users. The CVE record was last modified on June 29, 2026. Users of affected SureCart ver [truncated]