CVE-2025-24539
- EPSS 0.19%
- Veröffentlicht 17.04.2025 15:48:24
- Zuletzt bearbeitet 17.04.2025 20:21:48
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in debounce DeBounce Email Validator allows Reflected XSS. This issue affects DeBounce Email Validator: from n/a through 5.6.5.
CVE-2025-32580
- EPSS 0.19%
- Veröffentlicht 09.04.2025 16:09:33
- Zuletzt bearbeitet 09.04.2025 20:02:41
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in debounce DeBounce Email Validator allows Stored XSS. This issue affects DeBounce Email Validator: from n/a through 5.7.1.
CVE-2025-31098
- EPSS 0.5%
- Veröffentlicht 03.04.2025 14:15:35
- Zuletzt bearbeitet 07.04.2025 14:18:34
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in debounce DeBounce Email Validator allows PHP Local File Inclusion. This issue affects DeBounce Email Validator: from n/a through ...
CVE-2024-13339
- EPSS 0.04%
- Veröffentlicht 19.02.2025 09:15:09
- Zuletzt bearbeitet 26.02.2025 13:16:56
The DeBounce Email Validator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.6.6. This is due to missing or incorrect nonce validation on the 'debounce_email_validator' page. This makes it poss...
CVE-2024-11463
- EPSS 0.52%
- Veröffentlicht 23.11.2024 04:15:08
- Zuletzt bearbeitet 23.11.2024 04:15:08
The DeBounce Email Validator plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'from', 'to', and 'key' parameters in all versions up to, and including, 5.6.5 due to insufficient input sanitization and output escaping. This ...