VPNs involved in Tor over VPN are vulnerable to website traffic fingerprinting attacks.
Information: TorPlusVPN · Wiki · Legacy / Trac · GitLab
What about Tor over bridge? Are the bridges also vulnerable to website traffic fingerprinting attacks? How is that working?