This issue affects ApplyOnline: from n/a through 2.6.7.6.
Analysis and contextual insights are available on OpenCVE Cloud.
Vendor Solution
Update the WordPress ApplyOnline Plugin to the latest available version (at least 2.6.8).
Tracking
Sign in to view the affected projects.
No advisories yet.
Mon, 06 Jul 2026 23:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Wordpress
Wordpress wordpress Wp Reloaded Wp Reloaded applyonline |
|
| Vendors & Products |
Wordpress
Wordpress wordpress Wp Reloaded Wp Reloaded applyonline |
Wed, 01 Jul 2026 18:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Wed, 01 Jul 2026 17:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Missing Authorization vulnerability in WP Reloaded ApplyOnline allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ApplyOnline: from n/a through 2.6.7.6. | |
| Title | WordPress ApplyOnline plugin <= 2.6.7.6 - Broken Access Control vulnerability | |
| Weaknesses | CWE-862 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-07-01T18:04:55.782Z
Reserved: 2026-06-25T08:04:13.263Z
Link: CVE-2026-57721
Updated: 2026-07-01T18:04:52.061Z
No data.
No data.
OpenCVE Enrichment
Updated: 2026-07-08T02:00:12Z