Analysis and contextual insights are available on OpenCVE Cloud.
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Tue, 26 May 2026 00:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Title | WordPress Anti-Malware Security Bruteforce Firewall 4.20.59 Directory Traversal | WordPress Anti-Malware Security Bruteforce Firewall <= 4.20.72 Directory Traversal |
Mon, 18 May 2026 19:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
ssvc
|
Sun, 17 May 2026 18:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Gotmls
Gotmls malware Security And Bruteforce Firewall Wordpress Wordpress wordpress |
|
| Vendors & Products |
Gotmls
Gotmls malware Security And Bruteforce Firewall Wordpress Wordpress wordpress |
Sat, 16 May 2026 15:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | WordPress Plugin Anti-Malware Security and Bruteforce Firewall 4.20.59 contains a directory traversal vulnerability that allows unauthenticated attackers to read arbitrary files by manipulating the file parameter. Attackers can send requests to the duplicator_download action via admin-ajax.php with path traversal sequences to access sensitive system files outside the intended directory. | |
| Title | WordPress Anti-Malware Security Bruteforce Firewall 4.20.59 Directory Traversal | |
| Weaknesses | CWE-22 | |
| References |
| |
| Metrics |
cvssV3_1
|
Status: PUBLISHED
Assigner: VulnCheck
Published:
Updated: 2026-05-25T23:41:19.154Z
Reserved: 2026-05-16T14:41:49.029Z
Link: CVE-2021-47977
Updated: 2026-05-18T18:51:43.515Z
Status : Deferred
Published: 2026-05-16T16:16:23.233
Modified: 2026-06-17T04:18:51.960
Link: CVE-2021-47977
No data.
OpenCVE Enrichment
Updated: 2026-05-17T17:00:29Z