CVE-2021-47977 – WordPress Anti-Malware Security Bruteforce Firewall 4.20.59 Directory Traversal

CVE ID :CVE-2021-47977

Published : May 16, 2026, 3:28 p.m. | 29 minutes ago

Description :WordPress Plugin Anti-Malware Security and Bruteforce Firewall 4.20.59 contains a directory traversal vulnerability that allows unauthenticated attackers to read arbitrary files by manipulating the file parameter. Attackers can send requests to the duplicator_download action via admin-ajax.php with path traversal sequences to access sensitive system files outside the intended directory.

Severity: 8.7 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more… 

نوشته های مشابه

CVE-2021-47978 – ProcessMaker 3.5.4 Local File Inclusion via Path Traversal

CVE-2021-47942 – Home Assistant Community Store 1.10.0 Path Traversal Account Takeover

CVE-2020-37241 – bloofoxCMS 0.5.2.1 Cross-Site Request Forgery via user add

CVE-2021-47981 – Quick.CMS 6.7 Cross-Site Scripting via CSRF to Sliders Form