CVE-2024-24874

MEDIUM Year: 2024
CVSS v3 Score
5.3
Medium
Weakness Type
CWE-80
View all →

Vulnerability Description

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in CodePeople CP Polls allows Code Injection.This issue affects CP Polls: from n/a through 1.0.71.

Related Vulnerabilities

CVE-2023-48285

MEDIUM
CVSS:5.3(Medium)

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Tips and Tricks HQ Stripe Payments allows Code Injection.This issue affects Stripe Payments: from n/a thr...

CWE-802023

CVE-2023-48763

MEDIUM
CVSS:5.3(Medium)

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS vulnerability in Crocoblock JetFormBuilder allows Code Injection.This issue affects JetFormBuilder: from n/a through 3.1.4.

CWE-802023

CVE-2024-54223

MEDIUM
CVSS:5.3(Medium)

Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in Contact Form - Repute InfoSystems ARForms Form Builder allows Code Injection.This issue affects ARForms F...

CWE-802024

CVE-2025-28015

MEDIUM
CVSS:5.3(Medium)

A HTML Injection vulnerability was found in loginsystem/edit-profile.php of the PHPGurukul User Registration & Login and User Management System V3.3. This vulnerability allows remote attackers to exec...

CWE-802025

CVE-2025-23392

MEDIUM
CVSS:5.2(Medium)

A Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in spacewalk-java allows execution of arbitrary Javascript code on target systems.This issue affects Conta...

CWE-802025

CVE-2025-23393

MEDIUM
CVSS:5.2(Medium)

A Improper Neutralization of Script-Related HTML Tags in a Web Page (Basic XSS) vulnerability in spacewalk-java allows execution of arbitrary Javascript code on users machines.This issue affects Conta...

CWE-802025