Yop Poll vulnerabilities

CVE-2025-64370 [MEDIUM] CWE-862 CVE-2025-64370: Missing Authorization vulnerability in YOP YOP Poll yop-poll allows Exploiting Incorrectly Configure Missing Authorization vulnerability in YOP YOP Poll yop-poll allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects YOP Poll: from n/a through <= 6.5.38.

CVE-2025-62040 [HIGH] CWE-79 CVE-2025-62040: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability i Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in YOP YOP Poll yop-poll.This issue affects YOP Poll: from n/a through <= 6.5.37.

CVE-2017-2127 [MEDIUM] CWE-79 CVE-2017-2127: Cross-site scripting vulnerability in YOP Poll versions prior to 5.8.1 allows remote attackers to in Cross-site scripting vulnerability in YOP Poll versions prior to 5.8.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.