What is CVE-2025-24638?

A medium-severity Cross-site Scripting (XSS) vulnerability exists in the Create with Code plugin, affecting versions up to 1.4. Organizations are advised to address this issue promptly to mitigate potential exploitation risks.

What is the severity of CVE-2025-24638?

CVE-2025-24638 has a severity rating of MEDIUM with a CVSS base score of 6.5.

CVE-2025-24638 | Medium Vulnerability in pddring Create with Code

The vulnerability identified as CVE-2025-24638 is classified as a Cross-site Scripting (XSS) issue that allows for improper neutralization of input during web page generation. This specific vulnerability lies within the pddring Create with Code plugin, which allows DOM-Based XSS. The affected versions of this plugin range from unspecified (n/a) to version 1.4.

With a CVSS score of 6.5, this vulnerability is categorized as medium severity. This rating indicates a moderate level of risk, which necessitates attention from organizations utilizing this plugin. The potential impact includes unauthorized script execution in the context of the user's browser, with possible data theft or manipulation.

Currently, there is no known public exploit for this vulnerability, and it is not included in the Known Exploited Vulnerabilities (KEV) catalog. However, organizations should be proactive in addressing this risk to avoid any future exploitation.

Given the potential for exploitation through web interfaces, organizations should prioritize mitigating this vulnerability. Regular updates and security practices should be maintained to safeguard against such vulnerabilities.

Vulnerability Details

The vulnerability described as CVE-2025-24638 allows for the execution of malicious scripts due to improper input handling in the Create with Code plugin. It has a CVSS score of 6.5, indicating a medium severity level. The vulnerability affects versions from n/a to 1.4 and is classified under CWE-79, which pertains to improper neutralization of input for web page generation.

Technical Analysis

The root cause of this vulnerability is related to the failure to properly sanitize user input that is reflected in HTML pages. The attack vector is network-based, requiring low complexity for an attacker to exploit. The required privileges for exploitation are low, and user interaction is necessary to trigger the vulnerability. The impact on confidentiality, integrity, and availability is rated as low.

Risk & Impact Analysis

Risk to organizations includes potential unauthorized access to user data, as attackers may leverage this vulnerability to execute arbitrary scripts in the context of the user's session. The potential blast radius for this vulnerability could extend to any user interacting with the affected application. Organizations should assess their exposure and prioritize patching in their update cycle.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

All versions of the Create with Code plugin prior to version 1.4 are affected by this vulnerability. Organizations using affected versions should take immediate action to mitigate the risk.

Mitigation & Remediation

Organizations should upgrade to the latest version of the Create with Code plugin to remediate this vulnerability. If an immediate upgrade is not possible, consider implementing input validation and output encoding to prevent XSS attacks. Regular security assessments and penetration testing can help identify similar vulnerabilities in the future. For further guidance, organizations may consult best practices for penetration testing and secure coding practices.

Detection Guidance

To detect potential exploitation of this vulnerability, organizations should monitor logs for any unusual behaviors or unauthorized script execution. Implementing web application firewalls can help identify and block XSS attempts. Additionally, regular reviews of application performance and user feedback can reveal signs of exploitation.

AppSecure Threat Intelligence Insight

This vulnerability represents a broader trend of web application vulnerabilities that could lead to exploitation if left unaddressed. The low CVSS score highlights the need for diligent security practices, as even medium-severity vulnerabilities can be leveraged by attackers. Organizations should focus on continuous security improvements and security testing best practices to reduce their attack surface and protect against similar vulnerabilities in the future.

In summary, CVE-2025-24638 is a reminder that even medium-severity vulnerabilities demand attention. Organizations should remain vigilant and proactive in their security measures.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2025-24638: Medium Vulnerability in pddring Create with Code