cleantalk
Vulnerabilities and Security Researches

YOP Poll, CVE-2025-62040

CVE, Research URL

CVE-2025-62040

Home page URL

Security reports for YOP Poll

Application

YOP Poll

Published on
Nov 06, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in YOP YOP Poll yop-poll.This issue affects YOP Poll: from n/a through <= 6.5.37.
Affected versions
max 6.5.38.
Status
vulnerable
Previous vulnerability researches
BuddyForms Ultimate Member (893cfcf44e3c079784f666e461a667cb4f6e2761) , Jun 06, 2024
New vulnerability
Import WP – Export and Import CSV and XML files to WordPress (CVE-2025-12137) , Nov 12, 2025
XX2WP Integration Tools (CVE-2025-11857) , Nov 12, 2025
Greenshift &#8211; animation and page builder blocks (CVE-2025-11841) , Nov 11, 2025
Range Slider AddOn for Gravity Forms (CVE-2025-49905) , Nov 11, 2025
YOP Poll (CVE-2025-62040) , Nov 11, 2025