Lucene search
K

91 matches found

Vulnrichment
Vulnrichment
added 2025/04/03 1:27 p.m.7 views

CVE-2025-31098 WordPress DeBounce Email Validator plugin <= 5.7 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in debounce DeBounce Email Validator debounce-io-email-validator allows PHP Local File Inclusion.This issue affects DeBounce Email Validator: from n/a through = 5.7...

7.5CVSS7.2AI score0.00676EPSS
Exploits0References1
CVE
CVE
added 2025/04/03 1:27 p.m.44 views

CVE-2025-31098

CVE-2025-31098 affects the DeBounce Email Validator WordPress plugin. The issue is Improper filename control in PHP Includes/Requires, enabling unauthenticated Local File Inclusion (LFI). Affected versions are up to and including 5.7; CVSS v3.1 base score 7.5 (HIGH) with NETWORK attack vector, hi...

7.5CVSS7.2AI score0.00676EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/04/03 1:27 p.m.15 views

CVE-2025-31098 WordPress DeBounce Email Validator plugin <= 5.7 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in debounce DeBounce Email Validator debounce-io-email-validator allows PHP Local File Inclusion.This issue affects DeBounce Email Validator: from n/a through = 5.7...

7.5CVSS0.00676EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/04/03 12:0 a.m.3 views

PT-2025-14712 · Unknown · Debounce Email Validator

Name of the Vulnerable Software and Affected Versions: DeBounce Email Validator versions n/a through 5.7 Description: The issue is related to an Improper Control of Filename for Include/Require Statement in PHP Program, also known as 'PHP Remote File Inclusion'. This allows PHP Local File...

7.5CVSS9.5AI score0.00676EPSS
Exploits0References5
CNNVD
CNNVD
added 2025/04/03 12:0 a.m.2 views

WordPress plugin DeBounce Email Validator 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

7.5CVSS7.7AI score0.00676EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/29 11:51 a.m.5 views

CVE-2025-30789

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in clearoutio Clearout Email Validator clearout-email-validator allows Stored XSS.This issue affects Clearout Email Validator: from n/a through = 3.2.0...

5.9CVSS7.2AI score0.00327EPSS
Exploits0References1
NVD
NVD
added 2025/03/27 11:15 a.m.3 views

CVE-2025-30789

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in clearoutio Clearout Email Validator clearout-email-validator allows Stored XSS.This issue affects Clearout Email Validator: from n/a through = 3.2.0...

5.9CVSS0.00327EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/27 10:54 a.m.6 views

CVE-2025-30789 WordPress Clearout Email Validator plugin <= 3.2.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in clearoutio Clearout Email Validator clearout-email-validator allows Stored XSS.This issue affects Clearout Email Validator: from n/a through = 3.2.0...

5.9CVSS7.3AI score0.00327EPSS
Exploits0References1
CVE
CVE
added 2025/03/27 10:54 a.m.44 views

CVE-2025-30789

CVE-2025-30789 : Stored XSS in Clearout Email Validator (WordPress plugin). Public details show an authenticated (Administrator+) cross-site scripting vulnerability in Clearout Email Validator, affected versions include up to 3.2.0. The connected sources indicate a fixed state (Patched) for this ...

5.9CVSS7.2AI score0.00327EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/27 10:54 a.m.14 views

CVE-2025-30789 WordPress Clearout Email Validator plugin <= 3.2.0 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in clearoutio Clearout Email Validator clearout-email-validator allows Stored XSS.This issue affects Clearout Email Validator: from n/a through = 3.2.0...

5.9CVSS0.00327EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/03/27 3:6 a.m.6 views

WordPress Clearout Email Validator plugin <= 3.2.0 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by Nabil Irawan in WordPress Plugin Clearout Email Validator versions = 3.2.0...

5.9CVSS6.2AI score0.00327EPSS
Exploits0Affected Software1
CNNVD
CNNVD
added 2025/03/27 12:0 a.m.3 views

WordPress plugin Clearout Email Validator 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...

5.9CVSS8AI score0.00327EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/21 8:37 a.m.8 views

CVE-2024-13339

The DeBounce Email Validator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.8.0. This is due to missing or incorrect nonce validation on the 'debounceemailvalidator' page. This makes it possible for unauthenticated attackers to update...

6.1CVSS7.2AI score0.00141EPSS
Exploits0References1
OSV
OSV
added 2025/02/19 9:15 a.m.4 views

CVE-2024-13339

The DeBounce Email Validator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.6.6. This is due to missing or incorrect nonce validation on the 'debounceemailvalidator' page. This makes it possible for unauthenticated attackers to update...

5.4CVSS7.2AI score0.00141EPSS
Exploits0References2
NVD
NVD
added 2025/02/19 9:15 a.m.5 views

CVE-2024-13339

The DeBounce Email Validator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.8.0. This is due to missing or incorrect nonce validation on the 'debounceemailvalidator' page. This makes it possible for unauthenticated attackers to update...

6.1CVSS0.00141EPSS
Exploits0References2
CVE
CVE
added 2025/02/19 8:21 a.m.41 views

CVE-2024-13339

CVE-2024-13339 is a CSRF to Stored XSS vulnerability in the DeBounce Email Validator WordPress plugin. Public details show an unauthenticated attacker can forge requests (via the plugin’s settings page) to update settings and inject malicious scripts, affecting WordPress sites using the plugin up...

6.1CVSS7.2AI score0.00141EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/19 8:21 a.m.3 views

CVE-2024-13339 DeBounce Email Validator <= 5.8.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The DeBounce Email Validator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.8.0. This is due to missing or incorrect nonce validation on the 'debounceemailvalidator' page. This makes it possible for unauthenticated attackers to update...

6.1CVSS7.2AI score0.00141EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/02/19 8:21 a.m.13 views

CVE-2024-13339 DeBounce Email Validator <= 5.8.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

The DeBounce Email Validator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.8.0. This is due to missing or incorrect nonce validation on the 'debounceemailvalidator' page. This makes it possible for unauthenticated attackers to update...

6.1CVSS0.00141EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/02/19 12:0 a.m.4 views

WordPress plugin DeBounce Email Validator 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin ... The WordPress plugin...

6.1CVSS8.9AI score0.00141EPSS
Exploits0References2
NVD
NVD
added 2024/11/23 4:15 a.m.26 views

CVE-2024-11463

The DeBounce Email Validator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'from', 'to', and 'key' parameters in all versions up to, and including, 5.6.5 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers...

6.1CVSS0.00354EPSS
Exploits0References2
Rows per page
Query Builder