cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forappexperts appexperts

Direction: descending
Nov 11, 2025

APPExperts – Mobile App Builder for WordPress | WooCommerce to iOS and Android Apps # CVE-2025-53218

CVE, Research URL

CVE-2025-53218

Home page URL

Security reports for APPExperts – Mobile App Builder for WordPress | WooCommerce to iOS and Android Apps

Application

APPExperts – Mobile App Builder for WordPress | WooCommerce to iOS and Android Apps

Date
Oct 22, 2025
Research Description
Insertion of Sensitive Information Into Sent Data vulnerability in Saad Iqbal AppExperts appexperts allows Retrieve Embedded Sensitive Data.This issue affects AppExperts: from n/a through <= 1.4.5.
Affected versions
max 1.4.5.
Status
vulnerable
Mar 26, 2025

APPExperts &#8211; Mobile App Builder for WordPress | WooCommerce to iOS and Android Apps # CVE-2025-30609

CVE, Research URL

CVE-2025-30609

Home page URL

Security reports for APPExperts &#8211; Mobile App Builder for WordPress | WooCommerce to iOS and Android Apps

Application

APPExperts &#8211; Mobile App Builder for WordPress | WooCommerce to iOS and Android Apps

Date
Mar 24, 2025
Research Description
Insertion of Sensitive Information Into Sent Data vulnerability in AppExperts AppExperts – WordPress to Mobile App – WooCommerce to iOs and Android Apps allows Retrieve Embedded Sensitive Data. This issue affects AppExperts – WordPress to Mobile App – WooCommerce to iOs and Android Apps: from n/a through 1.4.3.
Affected versions
max 1.4.3.
Status
vulnerable
Nov 16, 2024

APPExperts &#8211; Mobile App Builder for WordPress | WooCommerce to iOS and Android Apps # CVE-2022-4974

CVE, Research URL

CVE-2022-4974

Home page URL

Security reports for APPExperts &#8211; Mobile App Builder for WordPress | WooCommerce to iOS and Android Apps

Application

APPExperts &#8211; Mobile App Builder for WordPress | WooCommerce to iOS and Android Apps

Date
Oct 16, 2024
Research Description
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in versions up to, and including 2.4.2. Any WordPress plugin or theme running a version of Freemius less than 2.4.3 is vulnerable.
Affected versions
max 1.2.2.
Status
vulnerable
Jun 07, 2024

APPExperts &#8211; Mobile App Builder for WordPress | WooCommerce to iOS and Android Apps # 6567ea535728d2baadc24e1bb26c7b0f69b56c1e

CVE, Research URL

6567ea535728d2baadc24e1bb26c7b0f69b56c1e

Home page URL

Security reports for APPExperts &#8211; Mobile App Builder for WordPress | WooCommerce to iOS and Android Apps

Application

APPExperts &#8211; Mobile App Builder for WordPress | WooCommerce to iOS and Android Apps

Date
Feb 28, 2022
Research Description
APPExperts &#8211; Mobile App Builder for WordPress | WooCommerce to iOS and Android Apps [appexperts] < 1.2.2 WordPress AppExperts – WordPress to Mobile App – WooCommerce to iOs and Android Apps plugin <= 1.2.1 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress AppExperts – WordPress to Mobile App – WooCommerce to iOs and Android Apps plugin (versions <= 1.2.1).
Affected versions
max 1.2.2.
Status
vulnerable