Bulletproof Security Security Vulnerabilities and Issues — Bulletproof Security CVE List

Lucene search

Ait-proBulletproof Security

3 matches found

CVE•added 2014/11/06 3:55 p.m.•48 views

CVE-2014-7958

Cross-site scripting (XSS) vulnerability in admin/htaccess/bpsunlock.php in the BulletProof Security plugin before .51.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the dbhost parameter.

4.3CVSS5.8AI score0.00624EPSS

CVE•added 2014/11/06 3:55 p.m.•46 views

CVE-2014-7959

SQL injection vulnerability in admin/htaccess/bpsunlock.php in the BulletProof Security plugin before .51.1 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the tableprefix parameter.

6.5CVSS8.1AI score0.00923EPSS

CVE•added 2014/12/01 3:59 p.m.•40 views

CVE-2014-8749

Server-side request forgery (SSRF) vulnerability in admin/htaccess/bpsunlock.php in the BulletProof Security plugin before .51.1 for WordPress allows remote attackers to trigger outbound requests that authenticate to arbitrary databases via the dbhost parameter.

5CVSS7AI score0.00448EPSS