VYPR
Unrated severityNVD Advisory· Published Sep 17, 2021· Updated Mar 31, 2025

BulletProof Security <= 5.1 Sensitive Information Disclosure

CVE-2021-39327

Description

The BulletProof Security WordPress plugin is vulnerable to sensitive information disclosure due to a file path disclosure in the publicly accessible ~/db_backup_log.txt file which grants attackers the full path of the site, in addition to the path of database backup files. This affects versions up to, and including, 5.1.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.