Live Vulnerability Intelligence
Threat Database
Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.
Threat Entry
Updated 2024-11-21
CVE-2022-1265 - Bulletproof Security Plugin
The BulletProof Security WordPress plugin before 6.1 does not sanitize and escape some of its CAPTCHA settings, which could allow high-privileged users to perform Cross-Site Scripting attacks even when unfiltered_html is disallowed
PLUGIN
Bulletproof Security
CVE-2022-1265
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2022-0590 - Bulletproof Security Plugin
The BulletProof Security WordPress plugin before 5.8 does not sanitise and escape some of its settings, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed.
PLUGIN
Bulletproof Security
CVE-2022-0590
Risk Score
Threat Entry
Updated 2024-11-21
CVE-2021-39327 - Bulletproof Security Plugin
The BulletProof Security WordPress plugin is vulnerable to sensitive information disclosure due to a file path disclosure in the publicly accessible ~/db_backup_log.txt file which grants attackers the full path of the site, in addition to the path of database backup files. This affects versions up to, and including, 5.1.
PLUGIN
Bulletproof Security
CVE-2021-39327
Risk Score