4 matches found
CVE-2025-28892
Cross-Site Request Forgery CSRF vulnerability in a2rocklobster FTP Sync ftp-sync allows Stored XSS.This issue affects FTP Sync: from n/a through = 1.1.6...
CVE-2025-28892 WordPress FTP Sync plugin <= 1.1.6 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in a2rocklobster FTP Sync ftp-sync allows Stored XSS.This issue affects FTP Sync: from n/a through = 1.1.6...
CVE-2025-28892 WordPress FTP Sync plugin <= 1.1.6 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in a2rocklobster FTP Sync ftp-sync allows Stored XSS.This issue affects FTP Sync: from n/a through = 1.1.6...
CVE-2025-28892
CVE-2025-28892 concerns the WordPress plugin FTP Sync (themes/plugins: FTP Sync – Theme, Media & Plugin Files) with a CSRF to Stored XSS vulnerability in versions up to 1.1.6. The entry states the flaw enables a stored cross‑site scripting via CSRF, affecting the plugin, and lists a CVSSv3.1 base...