cleantalk
Vulnerabilities and Security Researches

DigitalOcean Spaces Sync, CVE-2025-49047

CVE, Research URL

CVE-2025-49047

Home page URL

Security reports for DigitalOcean Spaces Sync

Application

DigitalOcean Spaces Sync

Published on
Aug 14, 2025
Research Description
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in keeross DigitalOcean Spaces Sync allows Stored XSS. This issue affects DigitalOcean Spaces Sync: from n/a through 2.2.1.
Affected versions
Min -, max 2.2.1.
Status
vulnerable
Previous vulnerability researches
WooCommerce Affiliate Plugin – Coupon Affiliates (CVE-2025-3598) , Apr 20, 2025
WooCommerce Affiliate Plugin – Coupon Affiliates (CVE-2024-12421) , Dec 15, 2024
WooCommerce Affiliate Plugin – Coupon Affiliates (CVE-2023-30475) , Jun 06, 2024
WooCommerce Affiliate Plugin – Coupon Affiliates (CVE-2022-0818) , Jun 06, 2024
WooCommerce Affiliate Plugin – Coupon Affiliates (CVE-2023-28992) , Jun 06, 2024
New vulnerability
WP Table Builder – WordPress Table Plugin (CVE-2025-55711) , Aug 15, 2025
WP Table Builder – WordPress Table Plugin (CVE-2025-8604) , Aug 15, 2025
Netease Music (CVE-2025-49052) , Aug 15, 2025
Quttera Web Malware Scanner (CVE-2025-8013) , Aug 15, 2025
DigitalOcean Spaces Sync (CVE-2025-49047) , Aug 15, 2025