Vulnerabilities > CVE-2024-31298 - Unspecified vulnerability in Joelhardi User Spam Remover

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

low complexity

joelhardi

NVD

Published: 2024-04-10

Updated: 2025-04-08

Summary

Insertion of Sensitive Information into Log File vulnerability in Joel Hardi User Spam Remover.This issue affects User Spam Remover: from n/a through 1.0.

Vulnerable Configurations

Part	Description	Count
Application	Joelhardi Joelhardi User Spam Remover 0.1 Joelhardi User Spam Remover 0.2 Joelhardi User Spam Remover 0.3 Joelhardi User Spam Remover 0.9 Joelhardi User Spam Remover 0.9.1 Joelhardi User Spam Remover 0.9.8 Joelhardi User Spam Remover 0.9.9 Joelhardi User Spam Remover 1.0	8

References

https://patchstack.com/database/vulnerability/user-spam-remover/wordpress-user-spam-remover-plugin-1-0-sensitive-data-exposure-via-log-file-vulnerability?_s_id=cve
https://patchstack.com/database/vulnerability/user-spam-remover/wordpress-user-spam-remover-plugin-1-0-sensitive-data-exposure-via-log-file-vulnerability?_s_id=cve