https://db.gcve.eu/sightings/feed 2026-05-23T11:24:08.110880+00:00 Vulnerability-Lookup info@gcve.eu python-feedgen Contains only the most 10 recent sightings. https://db.gcve.eu/sighting/4172d53f-d8e2-47c0-b284-c62173449bef/export 2026-05-23T11:24:08.245794+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "4172d53f-d8e2-47c0-b284-c62173449bef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22282", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llyici5yrh2b", "content": "", "creation_timestamp": "2025-04-04T13:07:22.101525Z"} 2025-04-04T13:07:22.101525+00:00 https://db.gcve.eu/sighting/def3beca-53ad-4fba-adfc-19bcf37966e8/export 2026-05-23T11:24:08.245724+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "def3beca-53ad-4fba-adfc-19bcf37966e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22281", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10459", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22281\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in joshix Simplish allows Stored XSS.This issue affects Simplish: from n/a through 2.6.4.\n\ud83d\udccf Published: 2025-04-04T13:52:32.086Z\n\ud83d\udccf Modified: 2025-04-04T14:01:11.797Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/theme/simplish/vulnerability/wordpress-simplish-theme-2-6-4-stored-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-04-04T14:36:08.000000Z"} 2025-04-04T14:36:08+00:00 https://db.gcve.eu/sighting/1e596057-30e3-40be-bce0-29d6645bcf6a/export 2026-05-23T11:24:08.245614+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "1e596057-30e3-40be-bce0-29d6645bcf6a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22285", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10462", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22285\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L)\n\ud83d\udd39 Description: Missing Authorization vulnerability in Eniture Technology Pallet Packaging for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Pallet Packaging for WooCommerce: from n/a through 1.1.15.\n\ud83d\udccf Published: 2025-04-04T13:53:34.223Z\n\ud83d\udccf Modified: 2025-04-04T13:53:34.223Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/pallet-packaging-for-woocommerce/vulnerability/wordpress-pallet-packaging-for-woocommerce-plugin-1-1-15-broken-access-control-vulnerability?_s_id=cve", "creation_timestamp": "2025-04-04T14:36:10.000000Z"} 2025-04-04T14:36:10+00:00 https://db.gcve.eu/sighting/af744d88-87de-4cd8-ba56-e3c4845e995e/export 2026-05-23T11:24:08.245441+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "af744d88-87de-4cd8-ba56-e3c4845e995e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22282", "type": "seen", "source": "https://t.me/cvedetector/22112", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-22282 - EPC ez Form Calculator WordPress Plugin Cross-site Scripting Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-22282 \nPublished : April 4, 2025, 11:15 a.m. | 40\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in EPC ez Form Calculator - WordPress plugin allows Reflected XSS.This issue affects ez Form Calculator - WordPress plugin: from n/a through 2.14.1.2. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"04 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-04T14:40:17.000000Z"} 2025-04-04T14:40:17+00:00 https://db.gcve.eu/sighting/51419ff5-8323-4e22-b23d-7bf133b46598/export 2026-05-23T11:24:08.245277+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "51419ff5-8323-4e22-b23d-7bf133b46598", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22285", "type": "seen", "source": "https://t.me/cvedetector/22144", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-22285 - Eniture Technology Pallet Packaging for WooCommerce Missing Authorization Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-22285 \nPublished : April 4, 2025, 2:15 p.m. | 1\u00a0hour, 42\u00a0minutes ago \nDescription : Missing Authorization vulnerability in Eniture Technology Pallet Packaging for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Pallet Packaging for WooCommerce: from n/a through 1.1.15. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"04 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-04T18:01:33.000000Z"} 2025-04-04T18:01:33+00:00 https://db.gcve.eu/sighting/478338aa-1e3a-465c-81b9-b4e10871e6a5/export 2026-05-23T11:24:08.245093+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "478338aa-1e3a-465c-81b9-b4e10871e6a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22281", "type": "seen", "source": "https://t.me/cvedetector/22143", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-22281 - Simplish Cross-site Scripting Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-22281 \nPublished : April 4, 2025, 2:15 p.m. | 1\u00a0hour, 42\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in joshix Simplish allows Stored XSS.This issue affects Simplish: from n/a through 2.6.4. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"04 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-04T18:01:33.000000Z"} 2025-04-04T18:01:33+00:00 https://db.gcve.eu/sighting/eac74312-5b12-4a79-950e-f58fdf2b4b99/export 2026-05-23T11:24:08.244914+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "eac74312-5b12-4a79-950e-f58fdf2b4b99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22287", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16972", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22287\n\ud83d\udd25 CVSS Score: 5.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L)\n\ud83d\udd39 Description: Missing Authorization vulnerability in Eniture Technology LTL Freight Quotes \u2013 FreightQuote Edition allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects LTL Freight Quotes \u2013 FreightQuote Edition: from n/a through 2.3.11.\n\ud83d\udccf Published: 2025-05-19T17:56:54.085Z\n\ud83d\udccf Modified: 2025-05-20T13:10:32.166Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/ltl-freight-quotes-freightquote-edition/vulnerability/wordpress-ltl-freight-quotes-freightquote-edition-plugin-2-3-11-broken-access-control-vulnerability?_s_id=cve", "creation_timestamp": "2025-05-20T13:40:27.000000Z"} 2025-05-20T13:40:27+00:00 https://db.gcve.eu/sighting/ab3d47e1-70db-4d34-b415-5e1ee0e70de9/export 2026-05-23T11:24:08.244739+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "ab3d47e1-70db-4d34-b415-5e1ee0e70de9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22289", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:43.000000Z"} 2025-08-25T18:31:43+00:00 https://db.gcve.eu/sighting/3b8d804a-10d3-4d75-8517-1200568cf79b/export 2026-05-23T11:24:08.244510+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "3b8d804a-10d3-4d75-8517-1200568cf79b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22286", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:43.000000Z"} 2025-08-25T18:31:43+00:00 https://db.gcve.eu/sighting/088636af-ed67-42d1-96a6-2bd98c89e93f/export 2026-05-23T11:24:08.242004+00:00 cedric http://db.gcve.eu/user/cedric {"uuid": "088636af-ed67-42d1-96a6-2bd98c89e93f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22284", "type": "seen", "source": "MISP/71f05cce-2beb-4b80-8496-bbbabc032544", "content": "", "creation_timestamp": "2025-08-25T18:31:43.000000Z"} 2025-08-25T18:31:43+00:00