{"uuid": "3adeaacc-c4b9-4fd7-a5b5-ee2cd3109899", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2150", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6981", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2150\n\ud83d\udd25 CVSS Score: 5.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: The C&Cm@il from HGiga has a Stored Cross-Site Scripting (XSS) vulnerability, allowing remote attackers with regular privileges to send emails containing malicious JavaScript code, which will be executed in the recipient's browser when they view the email.\n\ud83d\udccf Published: 2025-03-10T07:12:22.552Z\n\ud83d\udccf Modified: 2025-03-10T07:12:22.552Z\n\ud83d\udd17 References:\n1. https://www.twcert.org.tw/tw/cp-132-10004-99474-1.html\n2. https://www.twcert.org.tw/en/cp-139-10005-05e0f-2.html", "creation_timestamp": "2025-03-10T07:37:48.000000Z"}