cleantalk
Vulnerabilities and Security Researches

Captivate Sync, CVE-2024-53820

CVE, Research URL

CVE-2024-53820

Home page URL

Security reports for Captivate Sync

Application

Captivate Sync

Published on
Dec 06, 2024
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Captivate Audio Ltd Captivate Sync allows Stored XSS.This issue affects Captivate Sync: from n/a through 2.0.22.
Affected versions
max 2.0.22.
Status
vulnerable
Previous vulnerability researches
Captivate Sync (CVE-2025-60221) , Nov 10, 2025
Captivate Sync (CVE-2024-53820) , Dec 08, 2024
New vulnerability
Immocaster WordPress Plugin (CVE-2025-60190) , Nov 11, 2025
Integrate Google Drive – Browse, Upload, Download, Embed, Play, Share, Gallery, and Manage Your Google Drive Files Into Y (CVE-2025-12139) , Nov 11, 2025
WP Airbnb Review Slider (CVE-2025-12520) , Nov 11, 2025
Chartify – WordPress Chart Plugin (CVE-2025-11171) , Nov 11, 2025
WP-Thumbnail (CVE-2025-11819) , Nov 11, 2025