CVE-2024-10098 — The ApplyOnline WordPress plugin before 2.6.3 does not protect uploaded files during the application process, allowing unauthenticated users to access them and any private information they contain — CVE Database · The Intelligence Room