cleantalk
Vulnerabilities and Security Researches

Polls CP, CVE-2025-50025

CVE, Research URL

CVE-2025-50025

Home page URL

Security reports for Polls CP

Application

Polls CP

Published on
Jun 20, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in codepeople CP Polls allows Stored XSS. This issue affects CP Polls: from n/a through 1.0.81.
Affected versions
Min -, max 1.0.81.
Status
vulnerable
Previous vulnerability researches
Ninja Forms Google Sheet Connector (48c876c4c37ae47cdbba572acd132e945788cdbd) , Jun 07, 2024
Ninja Forms Google Sheet Connector (CVE-2023-2333) , Jun 07, 2024
Styler for Ninja Forms (CVE-2024-10717) , Nov 14, 2024
Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress (CVE-2024-43999) , Sep 01, 2024
Ninja Forms Contact Form – The Drag and Drop Form Builder for WordPress (CVE-2021-24381) , Jun 06, 2024
New vulnerability
WP Customer Area (CVE-2025-49982) , Jun 22, 2025
Polls CP (CVE-2025-50025) , Jun 22, 2025
ContentStudio (CVE-2025-49990) , Jun 22, 2025
ANON::form embedded secure form (CVE-2025-52733) , Jun 22, 2025
Oganro Travel Portal Search Widget for HotelBeds APITUDE API (CVE-2025-49966) , Jun 22, 2025