https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 01 May 2026 02:04:51 +0000 https://db.gcve.eu/sighting/c5439365-7515-4ca6-b114-13b990b4559f/export {"uuid": "c5439365-7515-4ca6-b114-13b990b4559f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10845", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2004\n\ud83d\udd25 CVSS Score: 9.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H)\n\ud83d\udd39 Description: The Simple WP Events plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the wpe_delete_file AJAX action in all versions up to, and including, 1.8.17. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).\n\ud83d\udccf Published: 2025-04-08T04:21:30.255Z\n\ud83d\udccf Modified: 2025-04-08T04:21:30.255Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/abdca93e-f68d-4a96-8bd7-443ee46ccb5a?source=cve\n2. https://plugins.trac.wordpress.org/browser/simple-wp-events/trunk/admin/includes/wp-events-export-events.php#L399", "creation_timestamp": "2025-04-08T04:46:35.000000Z"} {"uuid": "c5439365-7515-4ca6-b114-13b990b4559f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10845", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2004\n\ud83d\udd25 CVSS Score: 9.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H)\n\ud83d\udd39 Description: The Simple WP Events plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the wpe_delete_file AJAX action in all versions up to, and including, 1.8.17. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).\n\ud83d\udccf Published: 2025-04-08T04:21:30.255Z\n\ud83d\udccf Modified: 2025-04-08T04:21:30.255Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/abdca93e-f68d-4a96-8bd7-443ee46ccb5a?source=cve\n2. https://plugins.trac.wordpress.org/browser/simple-wp-events/trunk/admin/includes/wp-events-export-events.php#L399", "creation_timestamp": "2025-04-08T04:46:35.000000Z"} https://db.gcve.eu/sighting/c5439365-7515-4ca6-b114-13b990b4559f/export Tue, 08 Apr 2025 04:46:35 +0000 https://db.gcve.eu/sighting/2ca57d1f-dbde-4afe-ac0f-2e98af84fdd3/export {"uuid": "2ca57d1f-dbde-4afe-ac0f-2e98af84fdd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lmbr75tm2k2h", "content": "", "creation_timestamp": "2025-04-08T05:40:28.350709Z"} {"uuid": "2ca57d1f-dbde-4afe-ac0f-2e98af84fdd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lmbr75tm2k2h", "content": "", "creation_timestamp": "2025-04-08T05:40:28.350709Z"} https://db.gcve.eu/sighting/2ca57d1f-dbde-4afe-ac0f-2e98af84fdd3/export Tue, 08 Apr 2025 05:40:28 +0000 https://db.gcve.eu/sighting/ba594349-29ef-455d-ac04-6c88f73ccabb/export {"uuid": "ba594349-29ef-455d-ac04-6c88f73ccabb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "Telegram/GhCcQwP6QnMjxsfMJ8qz6Pxy9JaPQ-Bi2BXFCcmddlxOyKI", "content": "", "creation_timestamp": "2025-04-08T07:01:28.000000Z"} {"uuid": "ba594349-29ef-455d-ac04-6c88f73ccabb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "Telegram/GhCcQwP6QnMjxsfMJ8qz6Pxy9JaPQ-Bi2BXFCcmddlxOyKI", "content": "", "creation_timestamp": "2025-04-08T07:01:28.000000Z"} https://db.gcve.eu/sighting/ba594349-29ef-455d-ac04-6c88f73ccabb/export Tue, 08 Apr 2025 07:01:28 +0000 https://db.gcve.eu/sighting/b1f6a608-9b35-4072-925d-17193a0ac014/export {"uuid": "b1f6a608-9b35-4072-925d-17193a0ac014", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114301239303064883", "content": "", "creation_timestamp": "2025-04-08T07:48:21.667173Z"} {"uuid": "b1f6a608-9b35-4072-925d-17193a0ac014", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114301239303064883", "content": "", "creation_timestamp": "2025-04-08T07:48:21.667173Z"} https://db.gcve.eu/sighting/b1f6a608-9b35-4072-925d-17193a0ac014/export Tue, 08 Apr 2025 07:48:21 +0000 https://db.gcve.eu/sighting/0657f657-7323-4249-afec-43621658cf5e/export {"uuid": "0657f657-7323-4249-afec-43621658cf5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmbzf4ixhn2h", "content": "", "creation_timestamp": "2025-04-08T08:06:58.680110Z"} {"uuid": "0657f657-7323-4249-afec-43621658cf5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmbzf4ixhn2h", "content": "", "creation_timestamp": "2025-04-08T08:06:58.680110Z"} https://db.gcve.eu/sighting/0657f657-7323-4249-afec-43621658cf5e/export Tue, 08 Apr 2025 08:06:58 +0000 https://db.gcve.eu/sighting/51c99041-3130-45a0-bdf3-464004ea54ad/export {"uuid": "51c99041-3130-45a0-bdf3-464004ea54ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "https://t.me/cvedetector/22405", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-2004 - WordPress Simple WP Events Remote File Deletion Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-2004 \nPublished : April 8, 2025, 5:15 a.m. | 2\u00a0hours, 3\u00a0minutes ago \nDescription : The Simple WP Events plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the wpe_delete_file AJAX action in all versions up to, and including, 1.8.17. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php). \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"08 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-08T09:48:42.000000Z"} {"uuid": "51c99041-3130-45a0-bdf3-464004ea54ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "https://t.me/cvedetector/22405", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-2004 - WordPress Simple WP Events Remote File Deletion Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-2004 \nPublished : April 8, 2025, 5:15 a.m. | 2\u00a0hours, 3\u00a0minutes ago \nDescription : The Simple WP Events plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the wpe_delete_file AJAX action in all versions up to, and including, 1.8.17. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php). \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"08 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-08T09:48:42.000000Z"} https://db.gcve.eu/sighting/51c99041-3130-45a0-bdf3-464004ea54ad/export Tue, 08 Apr 2025 09:48:42 +0000 https://db.gcve.eu/sighting/3fac6790-7061-4487-b497-fb1946e64ec2/export {"uuid": "3fac6790-7061-4487-b497-fb1946e64ec2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20043", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16621", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-20043\n\ud83d\udd25 CVSS Score: 5.4 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: Uncontrolled search path for some Intel(R) RealSense\u2122 SDK software before version 2.56.2 may allow an authenticated user to potentially enable escalation of privilege via local access.\n\ud83d\udccf Published: 2025-05-13T21:01:51.214Z\n\ud83d\udccf Modified: 2025-05-16T03:55:48.633Z\n\ud83d\udd17 References:\n1. https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01305.html", "creation_timestamp": "2025-05-16T04:34:04.000000Z"} {"uuid": "3fac6790-7061-4487-b497-fb1946e64ec2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20043", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16621", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-20043\n\ud83d\udd25 CVSS Score: 5.4 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: Uncontrolled search path for some Intel(R) RealSense\u2122 SDK software before version 2.56.2 may allow an authenticated user to potentially enable escalation of privilege via local access.\n\ud83d\udccf Published: 2025-05-13T21:01:51.214Z\n\ud83d\udccf Modified: 2025-05-16T03:55:48.633Z\n\ud83d\udd17 References:\n1. https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01305.html", "creation_timestamp": "2025-05-16T04:34:04.000000Z"} https://db.gcve.eu/sighting/3fac6790-7061-4487-b497-fb1946e64ec2/export Fri, 16 May 2025 04:34:04 +0000 https://db.gcve.eu/sighting/3b9e6e27-5ba5-4900-93c3-4c10a68f36ba/export {"uuid": "3b9e6e27-5ba5-4900-93c3-4c10a68f36ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20042", "type": "seen", "source": "MISP/e1f6260f-3311-441b-92ae-e04cd5eb5f72", "content": "", "creation_timestamp": "2025-08-19T13:26:45.000000Z"} {"uuid": "3b9e6e27-5ba5-4900-93c3-4c10a68f36ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20042", "type": "seen", "source": "MISP/e1f6260f-3311-441b-92ae-e04cd5eb5f72", "content": "", "creation_timestamp": "2025-08-19T13:26:45.000000Z"} https://db.gcve.eu/sighting/3b9e6e27-5ba5-4900-93c3-4c10a68f36ba/export Tue, 19 Aug 2025 13:26:45 +0000 https://db.gcve.eu/sighting/c40072ce-906f-4748-b2c7-5f39034bb8ae/export {"uuid": "c40072ce-906f-4748-b2c7-5f39034bb8ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20049", "type": "seen", "source": "MISP/af1fbe07-e10c-40c4-844e-d4419bdf6f80", "content": "", "creation_timestamp": "2025-08-22T13:26:18.000000Z"} {"uuid": "c40072ce-906f-4748-b2c7-5f39034bb8ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20049", "type": "seen", "source": "MISP/af1fbe07-e10c-40c4-844e-d4419bdf6f80", "content": "", "creation_timestamp": "2025-08-22T13:26:18.000000Z"} https://db.gcve.eu/sighting/c40072ce-906f-4748-b2c7-5f39034bb8ae/export Fri, 22 Aug 2025 13:26:18 +0000 https://db.gcve.eu/sighting/3fdc6203-cd8a-46c1-8db5-f7b43666b2e5/export {"uuid": "3fdc6203-cd8a-46c1-8db5-f7b43666b2e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "Telegram/n1w7Ta-G54MRSrb1VMlA0xlYbSVuf31ZXu_QuieRtS0BjM0", "content": "", "creation_timestamp": "2026-04-08T23:30:06.000000Z"} {"uuid": "3fdc6203-cd8a-46c1-8db5-f7b43666b2e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "Telegram/n1w7Ta-G54MRSrb1VMlA0xlYbSVuf31ZXu_QuieRtS0BjM0", "content": "", "creation_timestamp": "2026-04-08T23:30:06.000000Z"} https://db.gcve.eu/sighting/3fdc6203-cd8a-46c1-8db5-f7b43666b2e5/export Wed, 08 Apr 2026 23:30:06 +0000