https://db.gcve.eu/sightings/feed 2026-05-09T01:16:22.420352+00:00 Vulnerability-Lookup info@gcve.eu python-feedgen Contains only the most 10 recent sightings. https://db.gcve.eu/sighting/025a2550-277a-4ad3-a639-e2972cc29c1c/export 2026-05-09T01:16:22.595267+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "025a2550-277a-4ad3-a639-e2972cc29c1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20615", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4365", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-20615\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2025-02-13T22:15:11.590\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-044-01\n2. https://www.qardio.com/about-us/#contact", "creation_timestamp": "2025-02-13T23:11:47.000000Z"} 2025-02-13T23:11:47+00:00 https://db.gcve.eu/sighting/8052fe27-09f7-4813-bbf1-e81cf52a88cd/export 2026-05-09T01:16:22.595213+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "8052fe27-09f7-4813-bbf1-e81cf52a88cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20615", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4395", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-20615\n\ud83d\udd25 CVSS Score: 6.1 (CVSS_V3)\n\ud83d\udd39 Description: The Qardio Arm iOS application exposes sensitive data such as usernames \nand passwords in a plist file. This allows an attacker to log in to \nproduction-level development accounts and access an engineering backdoor\n in the application. The engineering backdoor allows the attacker to \nsend hex-based commands over a UI-based terminal.\n\ud83d\udccf Published: 2025-02-14T00:30:44Z\n\ud83d\udccf Modified: 2025-02-14T00:30:44Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2025-20615\n2. https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-044-01\n3. https://www.qardio.com/about-us/#contact", "creation_timestamp": "2025-02-14T01:16:08.000000Z"} 2025-02-14T01:16:08+00:00 https://db.gcve.eu/sighting/7701fcbd-e1e6-420f-af3c-e711f95cdbda/export 2026-05-09T01:16:22.595159+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "7701fcbd-e1e6-420f-af3c-e711f95cdbda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20617", "type": "seen", "source": "https://t.me/cvedetector/18516", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-26856 - Cisco UD-LT2 OS Command Injection\", \n \"Content\": \"CVE ID : CVE-2025-26856 \nPublished : Feb. 20, 2025, 6:15 a.m. | 45\u00a0minutes ago \nDescription : Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in UD-LT2 firmware Ver.1.00.008_SE and earlier. If an attacker logs in to the affected product with an administrative account and manipulates requests for a certain screen operation, an arbitrary OS command may be executed. This vulnerability was reported on a different screen operation from CVE-2025-20617. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"20 Feb 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-20T08:07:56.000000Z"} 2025-02-20T08:07:56+00:00 https://db.gcve.eu/sighting/e8ed9db0-916c-4b0d-a38a-ddf7d262c413/export 2026-05-09T01:16:22.595106+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "e8ed9db0-916c-4b0d-a38a-ddf7d262c413", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20617", "type": "seen", "source": "Telegram/P9FV6UoOjOth-JYjnDpOemtU2nQq2lb5bYXqCyHGU1zLh94K", "content": "", "creation_timestamp": "2025-02-20T23:26:54.000000Z"} 2025-02-20T23:26:54+00:00 https://db.gcve.eu/sighting/6f3d15ba-cf54-47b8-8880-965acb84a519/export 2026-05-09T01:16:22.595050+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "6f3d15ba-cf54-47b8-8880-965acb84a519", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2061", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/6789", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2061\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability was found in code-projects Online Ticket Reservation System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /passenger.php. The manipulation of the argument name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-03-07T03:00:10.517Z\n\ud83d\udccf Modified: 2025-03-07T03:00:10.517Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.298816\n2. https://vuldb.com/?ctiid.298816\n3. https://vuldb.com/?submit.514529\n4. https://github.com/intercpt/XSS1/blob/main/XSS2.md\n5. https://code-projects.org/", "creation_timestamp": "2025-03-07T03:34:36.000000Z"} 2025-03-07T03:34:36+00:00 https://db.gcve.eu/sighting/0856077c-b694-4b89-b44a-dd88d0ae44ac/export 2026-05-09T01:16:22.594998+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "0856077c-b694-4b89-b44a-dd88d0ae44ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2061", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ljrdfilwh22o", "content": "", "creation_timestamp": "2025-03-07T06:00:29.509678Z"} 2025-03-07T06:00:29.509678+00:00 https://db.gcve.eu/sighting/349a14ec-b4bd-4db2-b85b-0ed1c362db4f/export 2026-05-09T01:16:22.594941+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "349a14ec-b4bd-4db2-b85b-0ed1c362db4f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2061", "type": "seen", "source": "https://t.me/cvedetector/19784", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-2061 - Code-projects Online Ticket Reservation System Cross Site Scripting Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-2061 \nPublished : March 7, 2025, 3:15 a.m. | 1\u00a0hour, 36\u00a0minutes ago \nDescription : A vulnerability was found in code-projects Online Ticket Reservation System 1.0. It has been declared as problematic. This vulnerability affects unknown code of the file /passenger.php. The manipulation of the argument name leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"07 Mar 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-07T06:34:29.000000Z"} 2025-03-07T06:34:29+00:00 https://db.gcve.eu/sighting/342b0fa5-8212-466f-b73b-bc59ca529341/export 2026-05-09T01:16:22.594869+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "342b0fa5-8212-466f-b73b-bc59ca529341", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2061", "type": "seen", "source": "Telegram/VepfU9sw4fUj35_hS3hQMCrOZpO4bRnc87_aAVPPQtVNCwlr", "content": "", "creation_timestamp": "2025-03-08T04:34:55.000000Z"} 2025-03-08T04:34:55+00:00 https://db.gcve.eu/sighting/8eabb662-7598-43cd-ab41-1a8e961fdd88/export 2026-05-09T01:16:22.594734+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "8eabb662-7598-43cd-ab41-1a8e961fdd88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20612", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16440", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-20612\n\ud83d\udd25 CVSS Score: 5.1 (cvssV4_0, Vector: CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: Incorrect execution-assigned permissions for some Edge Orchestrator software for Intel(R) Tiber\u2122 Edge Platform may allow an authenticated user to potentially enable escalation of privilege via adjacent access.\n\ud83d\udccf Published: 2025-05-13T21:02:21.117Z\n\ud83d\udccf Modified: 2025-05-15T04:02:06.789Z\n\ud83d\udd17 References:\n1. https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01239.html", "creation_timestamp": "2025-05-15T04:32:35.000000Z"} 2025-05-15T04:32:35+00:00 https://db.gcve.eu/sighting/d547421c-9a01-4308-8da7-00773f589c26/export 2026-05-09T01:16:22.592404+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "d547421c-9a01-4308-8da7-00773f589c26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20616", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16441", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-20616\n\ud83d\udd25 CVSS Score: 2.1 (cvssV4_0, Vector: CVSS:4.0/AV:A/AC:L/AT:P/PR:L/UI:N/VC:L/VI:L/VA:L/SC:L/SI:L/SA:L)\n\ud83d\udd39 Description: Uncontrolled resource consumption for some Edge Orchestrator software for Intel(R) Tiber\u2122 Edge Platform may allow an authenticated user to potentially enable escalation of privilege via adjacent access.\n\ud83d\udccf Published: 2025-05-13T21:02:22.618Z\n\ud83d\udccf Modified: 2025-05-15T04:02:05.064Z\n\ud83d\udd17 References:\n1. https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01239.html", "creation_timestamp": "2025-05-15T04:32:36.000000Z"} 2025-05-15T04:32:36+00:00