Published: 17/09/2021 Updated: 25/10/2022

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

CVSS v3 Base Score: 5.3 | Impact Score: 1.4 | Exploitability Score: 3.9

VMScore: 446

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

The BulletProof Security WordPress plugin is vulnerable to sensitive information disclosure due to a file path disclosure in the publicly accessible ~/db_backup_log.txt file which grants attackers the full path of the site, in addition to the path of database backup files. This affects versions up to, and including, 5.1.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ait-pro bulletproof security

WordPress BulletProof Security plugin version 51 suffers from an information disclosure vulnerability ...

CWE-459 https://www.wordfence.com/vulnerability-advisories/#CVE-2021-39327 https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=2591118%40bulletproof-security&new=2591118%40bulletproof-security&sfp_email=&sfph_mail=http://packetstormsecurity.com/files/164420/WordPress-BulletProof-Security-5.1-Information-Disclosure.html https://www.exploit-db.com/exploits/50382 https://github.com/Hacker5preme/Exploits/tree/main/Wordpress/CVE-2021-39327 https://nvd.nist.gov https://packetstormsecurity.com/files/164420/WordPress-BulletProof-Security-5.1-Information-Disclosure.html

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-39327

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect