High severity7.5NVD Advisory· Published Nov 8, 2021· Updated Jun 17, 2026
CVE-2021-24695
CVE-2021-24695
Description
The Simple Download Monitor WordPress plugin before 3.9.6 saves logs in a predictable location, and does not have any authentication or authorisation in place to prevent unauthenticated users to download and read the logs containing Sensitive Information such as IP Addresses and Usernames
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Simple Download Monitor WordPress plugindescription
- Range: <3.9.6
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/d7bdaf2b-cdd9-4aee-b1bb-01728160ff25nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.