Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

appsbd — Vulnerabilities & Security Advisories 10

Browse all 10 CVE security advisories affecting appsbd. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Appsbd develops enterprise software solutions with a core focus on business process automation and workflow management. Historically, their products have been susceptible to multiple remote code execution vulnerabilities, cross-site scripting flaws, and privilege escalation issues, as evidenced by their 10 recorded CVEs. Security assessments frequently identify input validation weaknesses and insecure default configurations as recurring problems. While no major public security incidents have been widely documented, the consistent pattern of vulnerabilities across their product line suggests potential systemic security gaps that could allow attackers to compromise systems or escalate privileges within affected environments.

Top products by appsbd: Vitepos Simple Notification Mini Cart Drawer For WooCommerce Elite Notification – Sales Popup, Social Proof, FOMO & WooCommerce Notification Vite Coupon Vitepos – Point of Sale (POS) for WooCommerce
CVE IDTitleCVSSSeverityPublished
CVE-2025-13156 Vitepos – Point of Sale (POS) for WooCommerce <= 3.3.0 - Authenticated (Subscriber+) Arbitrary File Upload to Remote Code Execution — Vitepos – Point of Sale (POS) for WooCommerceCWE-434 8.8 High2025-11-21
CVE-2025-39535 WordPress Vitepos plugin <= 3.1.7 - Broken Authentication Vulnerability — ViteposCWE-288 7.2 High2025-04-17
CVE-2025-32642 WordPress Vite Coupon plugin <= 1.0.9 - CSRF to Remote Code Execution (RCE) vulnerability — Vite CouponCWE-352 9.6 Critical2025-04-09
CVE-2025-22277 WordPress Vitepos plugin <= 3.1.4 - Broken Authentication vulnerability — ViteposCWE-288 8.8 High2025-04-01
CVE-2024-13866 Simple Notification <= 1.3 - Authenticated (Administrator+) Stored Cross-Site Scripting — Simple NotificationCWE-79 6.4 Medium2025-03-05
CVE-2025-26750 WordPress Vitepos Plugin <= 3.1.3 - Broken Access Control vulnerability — ViteposCWE-862 6.5 Medium2025-02-22
CVE-2024-54242 WordPress Simple Notification plugin <= 1.3 - Broken Access Control vulnerability — Simple NotificationCWE-862 6.5 Medium2024-12-13
CVE-2024-54241 WordPress Elite Notification plugin 1.5 - Cross Site Scripting (XSS) vulnerability — Elite Notification – Sales Popup, Social Proof, FOMO & WooCommerce NotificationCWE-862 6.5 Medium2024-12-13
CVE-2023-47694 WordPress Mini Cart Drawer For WooCommerce plugin <= 4.0.0 - Broken Access Control vulnerability — Mini Cart Drawer For WooCommerceCWE-862 5.4 Medium2024-12-09
CVE-2024-33574 WordPress Vitepos plugin <= 3.0.1 - Broken Access Control vulnerability — ViteposCWE-862 4.3 Medium2024-05-08

This page lists every published CVE security advisory associated with appsbd. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.