CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4538 matches found

RedhatCVE•added 2025/08/14 6:23 p.m.•2 views

CVE-2025-53729

Improper access control in Azure File Sync allows an authorized attacker to elevate privileges locally...

7.8CVSS7.2AI score0.00318EPSS

Exploits0References1

NVD•added 2025/08/14 11:15 a.m.•1 views

CVE-2025-49047

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in keeross DigitalOcean Spaces Sync do-spaces-sync allows Stored XSS.This issue affects DigitalOcean Spaces Sync: from n/a through = 2.2.1...

5.9CVSS0.00047EPSS

Exploits0References1

Vulnrichment•added 2025/08/14 10:34 a.m.•1 views

CVE-2025-49047 WordPress DigitalOcean Spaces Sync plugin <= 2.2.1 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in keeross DigitalOcean Spaces Sync allows Stored XSS. This issue affects DigitalOcean Spaces Sync: from n/a through 2.2.1...

5.9CVSS6.9AI score0.00047EPSS

Exploits0References1

CVE•added 2025/08/14 10:34 a.m.•10 views

CVE-2025-49047

CVE-2025-49047 is a stored Cross-Site Scripting vulnerability in the WordPress plugin DigitalOcean Spaces Sync (versions

5.9CVSS5.9AI score0.00047EPSS

Exploits0References1

CNNVD•added 2025/08/14 12:0 a.m.•19 views

WordPress plugin DigitalOcean Spaces Sync 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS5.8AI score0.00047EPSS

Exploits0References1

Positive Technologies•added 2025/08/14 12:0 a.m.•3 views

PT-2025-33180 · Digitalocean · Digitalocean Spaces Sync

Name of the Vulnerable Software and Affected Versions: DigitalOcean Spaces Sync versions through 2.2.1 Description: The software contains an improper neutralization of input during web page generation, leading to a stored cross-site scripting issue. Recommendations: Update to a version later than...

5.9CVSS5.7AI score0.00047EPSS

Exploits0References3

NCSC•added 2025/08/13 7:22 a.m.•5 views

Vulnerabilities fixed in Azure products

Microsoft has fixed vulnerabilities in Azure products. The vulnerabilities are related to improper access control mechanisms, allowing authorized attackers to perform local spoofing attacks, obtain elevated privileges, reveal sensitive information and compromise the integrity of systems. This can...

10CVSS6.3AI score0.01422EPSS

Exploits1References1

OSV•added 2025/08/12 6:15 p.m.•2 views

CVE-2025-53729

Improper access control in Azure File Sync allows an authorized attacker to elevate privileges locally...

7.8CVSS5.7AI score0.00318EPSS

Exploits0References1

NVD•added 2025/08/12 6:15 p.m.•2 views

CVE-2025-53729

Improper access control in Azure File Sync allows an authorized attacker to elevate privileges locally...

7.8CVSS0.00318EPSS

Exploits0References1

CVE•added 2025/08/12 5:9 p.m.•30 views

CVE-2025-53729

The CVE-2025-53729 entry concerns an Elevation of Privilege in Microsoft Azure File Sync. The vulnerability affects the Azure File Sync Agent on Windows Server installations prior to the 18.3 release (v18.3.0.0 fixes the issue; versions up to 18.2 and earlier are affected). The underlying problem...

7.8CVSS7.1AI score0.00318EPSS

Exploits0References1Affected Software1

Vulnrichment•added 2025/08/12 5:9 p.m.•1 views

CVE-2025-53729 Microsoft Azure File Sync Elevation of Privilege Vulnerability

...

7.8CVSS7.2AI score0.00318EPSS

Exploits0References1