2 matches found
CVE-2025-30935
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NickDuncan Contact Form allows DOM-Based XSS. This issue affects Contact Form: from n/a through 2.0.12.
CVE-2023-44231
Cross-Site Request Forgery (CSRF) vulnerability in NickDuncan Contact Form plugin