Vulnerabilities > Xyzscripts > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-08-15 | CVE-2024-7420 | Cross-Site Request Forgery (CSRF) vulnerability in Xyzscripts Insert PHP Code Snippet The Insert PHP Code Snippet plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.3.6. | 6.5 |
| 2022-06-16 | CVE-2017-20053 | Cross-Site Request Forgery (CSRF) vulnerability in Xyzscripts Contact Form Manager A vulnerability was found in XYZScripts Contact Form Manager Plugin. | 4.3 |
| 2022-06-16 | CVE-2017-20054 | Cross-site Scripting vulnerability in Xyzscripts Contact Form Manager A vulnerability was found in XYZScripts Contact Form Manager Plugin. | 5.4 |