Description ProjectSend before r1070 writes user passwords to the server logs. Remediation References CVE-2019-11492 Related Vulnerabilities Joomla! Core 1.5.x Security Bypass (1.5.0 - 1.5.13) Magento CVE-2019-8137 Vulnerability (CVE-2019-8137) WordPress Plugin Paid Memberships Pro-Restrict Member Access to Content, Courses, Communities-Free or Paid Subscriptions SQL Injection (2.6.6) Envoy Proxy CVE-2024-45807 Vulnerability (CVE-2024-45807) Craft CMS Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2024-37843) Severity High Classification CVE-2019-11492 CWE-532 Tags Missing Update Known Vulnerabilities