Vulnerabilities > Cimatti > Contact Forms > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-13 | CVE-2023-2563 | Unspecified vulnerability in Cimatti Contact Forms The WordPress Contact Forms by Cimatti plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 1.5.7. | 4.3 |
| 2021-10-25 | CVE-2021-24744 | Cross-site Scripting vulnerability in Cimatti Contact Forms The WordPress Contact Forms by Cimatti WordPress plugin before 1.4.12 does not sanitise and escape the Form Title before outputting it in some admin pages. | 4.8 |