All 4 CVE vulnerabilities found in ApplyOnline, with AI-generated Chinese analysis, references, and POCs.
Vendor: Spider Teams
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-10098 | ApplyOnline – Application Form Builder and Manager < 2.6.3 - Unauthenticated Application File Access | 7.5AI | HighAI | 2025-05-15 |
| CVE-2025-22721 | WordPress ApplyOnline plugin <= 2.6.7.1 - Broken Access Control vulnerability CWE-862 | 4.3 | Medium | 2025-01-21 |
| CVE-2023-46080 | WordPress ApplyOnline – Application Form Builder and Manager plugin <= 2.5.3 - Broken Access Control vulnerability CWE-862 | 4.3 | Medium | 2025-01-02 |
| CVE-2023-24391 | WordPress ApplyOnline – Application Form Builder and Manager Plugin <= 2.5 is vulnerable to Cross Site Scripting (XSS) CWE-79 | 5.9 | Medium | 2023-08-10 |
All 4 known CVE vulnerabilities affecting ApplyOnline with full Chinese analysis, references, and POCs where available.