cleantalk
Vulnerabilities and Security Researches

Captivate Sync, CVE-2025-60221

CVE, Research URL

CVE-2025-60221

Home page URL

Security reports for Captivate Sync

Application

Captivate Sync

Published on
Oct 22, 2025
Research Description
Deserialization of Untrusted Data vulnerability in captivateaudio Captivate Sync captivatesync-trade allows Object Injection.This issue affects Captivate Sync: from n/a through <= 3.0.3.
Affected versions
max 3.0.3.
Status
vulnerable
Previous vulnerability researches
Theme Editor (CVE-2022-2440) , Aug 29, 2024
Theme Editor (CVE-2025-9890) , Nov 10, 2025
Theme Editor (CVE-2023-6091) , Jun 07, 2024
Theme Editor (CVE-2021-24154) , Jun 07, 2024
New vulnerability
Off-Canvas Sidebars &amp; Menus (Slidebars) (CVE-2025-62891) , Nov 11, 2025
LLM Hubspot Blog Import (CVE-2025-11257) , Nov 11, 2025
AI ChatBot (CVE-2025-62952) , Nov 11, 2025
Pie Calendar (CVE-2025-62024) , Nov 11, 2025
Demo Import Kit (CVE-2025-10051) , Nov 11, 2025