cleantalk
Vulnerabilities and Security Researches

FTP Sync – Theme, Media & Plugin Files, CVE-2025-28892

CVE, Research URL

CVE-2025-28892

Published on
Mar 12, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in a2rocklobster FTP Sync allows Stored XSS. This issue affects FTP Sync: from n/a through 1.1.6.
Affected versions
Min -, max 1.1.6.
Status
vulnerable