cleantalk
Vulnerabilities and Security Researches

DigitalOcean Spaces Sync, CVE-2025-49047

CVE, Research URL

CVE-2025-49047

Home page URL

Security reports for DigitalOcean Spaces Sync

Application

DigitalOcean Spaces Sync

Published on
Aug 14, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in keeross DigitalOcean Spaces Sync allows Stored XSS. This issue affects DigitalOcean Spaces Sync: from n/a through 2.2.1.
Affected versions
Min -, max 2.2.1.
Status
vulnerable
Previous vulnerability researches
Form Builder CP (CVE-2022-2567) , Jun 07, 2024
Form Builder CP (CVE-2024-13680) , Jan 26, 2025
Form Builder CP (CVE-2025-24672) , Jan 26, 2025
New vulnerability
WP Table Builder – WordPress Table Plugin (CVE-2025-55711) , Aug 15, 2025
WP Table Builder – WordPress Table Plugin (CVE-2025-8604) , Aug 15, 2025
Netease Music (CVE-2025-49052) , Aug 15, 2025
Quttera Web Malware Scanner (CVE-2025-8013) , Aug 15, 2025
DigitalOcean Spaces Sync (CVE-2025-49047) , Aug 15, 2025