2025-05-15 20:06:40
WPScan
PUBLISHED
The ApplyOnline WordPress plugin before 2.6.3 does not protect uploaded files during the application process, allowing unauthenticated users to access them and any private information they contain