{"uuid": "c8b08808-e90b-4842-b310-ebac3de271b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1653", "type": "published-proof-of-concept", "source": "https://t.me/realcodeb0ss/13", "content": "Attackers with Subscriber-level access can abuse this flaw to modify their own privileges, such as updating their user role to \u201cadministrator.\u201d The vulnerability stems from inadequate capability checks and nonce validation, allowing low-privileged users to escalate permissions by crafting malicious requests to the vulnerable endpoint.", "creation_timestamp": "2025-03-28T23:40:21.000000Z"}