Bit Apps — Vulnerabilities & Security Advisories 13

Browse all 13 CVE security advisories affecting Bit Apps. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Bit Apps develops software solutions with a core focus on enterprise productivity and collaboration tools. Historically, their products have been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, accounting for their 13 recorded CVEs. The company has faced scrutiny for inconsistent patch management practices, with several critical vulnerabilities remaining unaddressed for extended periods. Their security posture has been characterized by delayed vulnerability disclosures and insufficient input validation in web interfaces, leading to potential unauthorized access risks. While no major public security incidents have been documented, the accumulation of CVEs suggests ongoing challenges in secure development lifecycles.

Top products by Bit Apps: Bit Form Bit Form Pro Bit Assist Bit Integrations Bit SMTP

CVEs 13

CVE ID	Title	CVSS	Severity	Published
CVE-2026-32519	WordPress Bit SMTP plugin <= 1.2.2 - Broken Authentication vulnerability — Bit SMTPCWE-266	9.0	Critical	2026-03-25
CVE-2026-25418	WordPress Bit Form plugin <= 2.21.10 - SQL Injection vulnerability — Bit FormCWE-89	7.6	High	2026-02-19
CVE-2025-68596	WordPress Bit Assist plugin <= 1.5.11 - Broken Access Control vulnerability — Bit AssistCWE-862	5.3	Medium	2025-12-24
CVE-2025-30834	WordPress Bit Assist plugin <= 1.5.4 - Path Traversal vulnerability — Bit AssistCWE-35	7.5	High	2025-04-01
CVE-2025-30884	WordPress Bit Integrations plugin <= 2.4.10 - Open Redirection vulnerability — Bit IntegrationsCWE-601	4.7	Medium	2025-03-27
CVE-2025-30885	WordPress Bit Form plugin <= 2.18.0 - Open Redirection vulnerability — Bit FormCWE-601	4.7	Medium	2025-03-27
CVE-2024-47335	WordPress Bit Form plugin <= 2.13.11 - SQL Injection vulnerability — Bit FormCWE-89	7.6	High	2024-10-07
CVE-2024-47301	WordPress Bit Form plugin <= 2.13.10 - Cross Site Scripting (XSS) vulnerability — Bit FormCWE-79	7.1	High	2024-10-06
CVE-2024-47319	WordPress Bit Form plugin <= 2.13.10 - Arbitrary File Upload vulnerability — Bit FormCWE-434	8.0	High	2024-10-05
CVE-2024-43251	WordPress Bit Form Pro plugin <= 2.6.4 - Authenticated Sensitive Data Exposure vulnerability — Bit Form ProCWE-200	6.5	Medium	2024-08-26
CVE-2024-43250	WordPress Bit Form Pro plugin <= 2.6.4 - Authenticated Plugin Settings Change vulnerability — Bit Form ProCWE-863	7.1	High	2024-08-19
CVE-2024-43249	WordPress Bit Form Pro plugin <= 2.6.4 - Authenticated Arbitrary File Upload vulnerability — Bit Form ProCWE-434	9.9	Critical	2024-08-19
CVE-2024-43248	WordPress Bit Form Pro plugin <= 2.6.4 - Unauthenticated Arbitrary File Deletion vulnerability — Bit Form ProCWE-22	8.6	High	2024-08-19

This page lists every published CVE security advisory associated with Bit Apps. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.

Goal Reached Thanks to every supporter — we hit 100%!

Bit Apps — Vulnerabilities & Security Advisories 13