CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-13339

The DeBounce Email Validator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 5.6.6. This is due to missing or incorrect nonce validation on the 'debounce_email_validator' page. This makes it possible for unauthenticated attackers to update settings and inject malicious web scripts via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 2.1%

CVSS Severity

CVSS v3 Score 6.1

References

Products affected by CVE-2024-13339

Debounce » Email Validator » Version: N/A

cpe:2.3:a:debounce:email_validator:-
Debounce » Email Validator » Version: 3.2.1

cpe:2.3:a:debounce:email_validator:3.2.1
Debounce » Email Validator » Version: 3.2.2

cpe:2.3:a:debounce:email_validator:3.2.2
Debounce » Email Validator » Version: 3.3.0

cpe:2.3:a:debounce:email_validator:3.3.0
Debounce » Email Validator » Version: 4.0

cpe:2.3:a:debounce:email_validator:4.0
Debounce » Email Validator » Version: 4.1

cpe:2.3:a:debounce:email_validator:4.1
Debounce » Email Validator » Version: 5.0.1

cpe:2.3:a:debounce:email_validator:5.0.1
Debounce » Email Validator » Version: 5.0.5

cpe:2.3:a:debounce:email_validator:5.0.5
Debounce » Email Validator » Version: 5.2.0

cpe:2.3:a:debounce:email_validator:5.2.0
Debounce » Email Validator » Version: 5.3.2

cpe:2.3:a:debounce:email_validator:5.3.2
Debounce » Email Validator » Version: 5.3.5

cpe:2.3:a:debounce:email_validator:5.3.5
Debounce » Email Validator » Version: 5.3.6

cpe:2.3:a:debounce:email_validator:5.3.6
Debounce » Email Validator » Version: 5.3.7

cpe:2.3:a:debounce:email_validator:5.3.7
Debounce » Email Validator » Version: 5.4

cpe:2.3:a:debounce:email_validator:5.4
Debounce » Email Validator » Version: 5.5

cpe:2.3:a:debounce:email_validator:5.5
Debounce » Email Validator » Version: 5.5.1

cpe:2.3:a:debounce:email_validator:5.5.1
Debounce » Email Validator » Version: 5.6

cpe:2.3:a:debounce:email_validator:5.6
Debounce » Email Validator » Version: 5.6.5

cpe:2.3:a:debounce:email_validator:5.6.5
Debounce » Email Validator » Version: 5.6.6

cpe:2.3:a:debounce:email_validator:5.6.6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-13339

Products

Pricing

Contact Us