cleantalk
Vulnerabilities and Security Researches

FTP Sync – Theme, Media & Plugin Files, CVE-2025-28892

CVE, Research URL

CVE-2025-28892

Home page URL

Security reports for FTP Sync – Theme, Media & Plugin Files

Application

FTP Sync – Theme, Media & Plugin Files

Published on
Mar 12, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in a2rocklobster FTP Sync allows Stored XSS. This issue affects FTP Sync: from n/a through 1.1.6.
Affected versions
Min -, max 1.1.6.
Status
vulnerable
Previous vulnerability researches
FTP Sync – Theme, Media & Plugin Files (CVE-2025-28892) , Mar 13, 2025
New vulnerability
GDPR Cookie Compliance (CCPA, DSGVO, Cookie Consent) (CVE-2025-1620) , Mar 14, 2025
Hide My WP Ghost – Security Plugin (CVE-2025-2056) , Mar 14, 2025
Business Directory Plugin – Easy Listing Directories for WordPress (CVE-2024-13887) , Mar 14, 2025
AppPresser – Mobile App Framework (CVE-2025-1561) , Mar 14, 2025
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin (CVE-2025-1119) , Mar 14, 2025