Dbsyncer Project Dbsyncer — known CVE vulnerabilities
Every CVE whose affected-product data names Dbsyncer Project Dbsyncer, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2025-45237 — CVSS 7.5 (high): Incorrect access control in the component /config/download of DBSyncer v2.0.6 allows attackers to access the JSON file containing sensitive…
CVE-2025-45236 — CVSS 5.4 (medium): A stored cross-site scripting (XSS) vulnerability in the Edit Profile feature of DBSyncer v2.0.6 allows attackers to execute arbitrary web…