cleantalk
Vulnerabilities and Security Researches

ApplyOnline – Application Form Builder and Manager, CVE-2023-24391

CVE, Research URL

CVE-2023-24391

Home page URL

Security reports for ApplyOnline – Application Form Builder and Manager

Application

ApplyOnline – Application Form Builder and Manager

Published on
Aug 10, 2023
Research Description
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Spider Teams ApplyOnline plugin <= 2.5 versions.
Affected versions
Min -, max 2.5.6.
Status
vulnerable
Previous vulnerability researches
ApplyOnline &#8211; Application Form Builder and Manager (CVE-2025-22721) , Jan 19, 2025
ApplyOnline &#8211; Application Form Builder and Manager (CVE-2023-46080) , Jun 10, 2024
ApplyOnline &#8211; Application Form Builder and Manager (CVE-2024-10098) , May 17, 2025
ApplyOnline &#8211; Application Form Builder and Manager (CVE-2024-2036) , Jun 07, 2024
ApplyOnline &#8211; Application Form Builder and Manager (CVE-2023-24391) , Jun 07, 2024
New vulnerability
WP Google Review Slider (CVE-2024-11109) , May 17, 2025
Sailthru Triggermail (CVE-2024-11141) , May 17, 2025
LifterLMS &#8211; WordPress LMS Plugin for eLearning (CVE-2024-13619) , May 17, 2025
AHAthat Plugin (CVE-2024-11269) , May 17, 2025
WP ERP | Complete HR solution with recruitment &amp; job listings | WooCommerce CRM &amp; Accounting (CVE-2024-12812) , May 17, 2025