3 matches found
CVE-2021-24695
creationtimestamp| type| source ---|---|--- 2021-11-08 20:36:05+00:00| seen| https://t.me/cibsecurity/32008...
CVE-2021-24695 Simple Download Monitor < 3.9.6 - Unauthenticated Log Access
The Simple Download Monitor WordPress plugin before 3.9.6 saves logs in a predictable location, and does not have any authentication or authorisation in place to prevent unauthenticated users to download and read the logs containing Sensitive Information such as IP Addresses and Usernames...
CVE-2021-24695
Summary: The Simple Download Monitor WordPress plugin (before 3.9.6) stores logs in a predictable location and lacks authentication/authorization, allowing unauthenticated users to download and read logs that contain sensitive information (IP addresses, usernames). What’s affected: WordPress plug...