https://db.gcve.eu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Fri, 01 May 2026 05:37:43 +0000 https://db.gcve.eu/sighting/8c3d3b70-c85d-4f18-b65c-490b3b3bf919/export {"uuid": "8c3d3b70-c85d-4f18-b65c-490b3b3bf919", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-39578", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12030", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-39578\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CyberChimps Responsive Blocks allows Stored XSS. This issue affects Responsive Blocks: from n/a through 2.0.2.\n\ud83d\udccf Published: 2025-04-16T12:44:25.659Z\n\ud83d\udccf Modified: 2025-04-16T12:44:25.659Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/responsive-block-editor-addons/vulnerability/wordpress-responsive-blocks-2-0-2-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-04-16T12:57:01.000000Z"} {"uuid": "8c3d3b70-c85d-4f18-b65c-490b3b3bf919", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-39578", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/12030", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-39578\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CyberChimps Responsive Blocks allows Stored XSS. This issue affects Responsive Blocks: from n/a through 2.0.2.\n\ud83d\udccf Published: 2025-04-16T12:44:25.659Z\n\ud83d\udccf Modified: 2025-04-16T12:44:25.659Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/responsive-block-editor-addons/vulnerability/wordpress-responsive-blocks-2-0-2-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-04-16T12:57:01.000000Z"} https://db.gcve.eu/sighting/8c3d3b70-c85d-4f18-b65c-490b3b3bf919/export Wed, 16 Apr 2025 12:57:01 +0000 https://db.gcve.eu/sighting/c79270ed-2c6e-4c11-aa09-bf36f747eebb/export {"uuid": "c79270ed-2c6e-4c11-aa09-bf36f747eebb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-39579", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12031", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-39579\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Swings Membership For WooCommerce allows DOM-Based XSS. This issue affects Membership For WooCommerce: from n/a through 2.8.0.\n\ud83d\udccf Published: 2025-04-16T12:44:25.081Z\n\ud83d\udccf Modified: 2025-04-16T12:44:25.081Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/membership-for-woocommerce/vulnerability/wordpress-membership-for-woocommerce-2-8-0-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-04-16T12:57:02.000000Z"} {"uuid": "c79270ed-2c6e-4c11-aa09-bf36f747eebb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-39579", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/12031", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-39579\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Swings Membership For WooCommerce allows DOM-Based XSS. This issue affects Membership For WooCommerce: from n/a through 2.8.0.\n\ud83d\udccf Published: 2025-04-16T12:44:25.081Z\n\ud83d\udccf Modified: 2025-04-16T12:44:25.081Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/membership-for-woocommerce/vulnerability/wordpress-membership-for-woocommerce-2-8-0-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-04-16T12:57:02.000000Z"} https://db.gcve.eu/sighting/c79270ed-2c6e-4c11-aa09-bf36f747eebb/export Wed, 16 Apr 2025 12:57:02 +0000 https://db.gcve.eu/sighting/b75d0c41-d01a-4caa-bcdd-feface74a491/export {"uuid": "b75d0c41-d01a-4caa-bcdd-feface74a491", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-39570", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114348194618384395", "content": "", "creation_timestamp": "2025-04-16T14:49:43.135940Z"} {"uuid": "b75d0c41-d01a-4caa-bcdd-feface74a491", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-39570", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114348194618384395", "content": "", "creation_timestamp": "2025-04-16T14:49:43.135940Z"} https://db.gcve.eu/sighting/b75d0c41-d01a-4caa-bcdd-feface74a491/export Wed, 16 Apr 2025 14:49:43 +0000 https://db.gcve.eu/sighting/bb13bc47-e7c5-453c-a353-6d569657af4a/export {"uuid": "bb13bc47-e7c5-453c-a353-6d569657af4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-39575", "type": "seen", "source": "https://t.me/cvedetector/23104", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-39575 - WPSight WPCasa Cross-site Scripting (XSS)\", \n \"Content\": \"CVE ID : CVE-2025-39575 \nPublished : April 16, 2025, 1:15 p.m. | 18\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPSight WPCasa allows Stored XSS. This issue affects WPCasa: from n/a through 1.3.2. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"16 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-16T16:03:09.000000Z"} {"uuid": "bb13bc47-e7c5-453c-a353-6d569657af4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-39575", "type": "seen", "source": "https://t.me/cvedetector/23104", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-39575 - WPSight WPCasa Cross-site Scripting (XSS)\", \n \"Content\": \"CVE ID : CVE-2025-39575 \nPublished : April 16, 2025, 1:15 p.m. | 18\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPSight WPCasa allows Stored XSS. This issue affects WPCasa: from n/a through 1.3.2. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"16 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-16T16:03:09.000000Z"} https://db.gcve.eu/sighting/bb13bc47-e7c5-453c-a353-6d569657af4a/export Wed, 16 Apr 2025 16:03:09 +0000 https://db.gcve.eu/sighting/fe9e7ff8-0e0c-4327-b024-262e64386d37/export {"uuid": "fe9e7ff8-0e0c-4327-b024-262e64386d37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-39574", "type": "seen", "source": "https://t.me/cvedetector/23105", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-39574 - UIUX Lab Uix Shortcodes Cross-site Scripting\", \n \"Content\": \"CVE ID : CVE-2025-39574 \nPublished : April 16, 2025, 1:15 p.m. | 18\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in UIUX Lab Uix Shortcodes allows Stored XSS. This issue affects Uix Shortcodes: from n/a through 2.0.4. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"16 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-16T16:03:10.000000Z"} {"uuid": "fe9e7ff8-0e0c-4327-b024-262e64386d37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-39574", "type": "seen", "source": "https://t.me/cvedetector/23105", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-39574 - UIUX Lab Uix Shortcodes Cross-site Scripting\", \n \"Content\": \"CVE ID : CVE-2025-39574 \nPublished : April 16, 2025, 1:15 p.m. | 18\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in UIUX Lab Uix Shortcodes allows Stored XSS. This issue affects Uix Shortcodes: from n/a through 2.0.4. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"16 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-16T16:03:10.000000Z"} https://db.gcve.eu/sighting/fe9e7ff8-0e0c-4327-b024-262e64386d37/export Wed, 16 Apr 2025 16:03:10 +0000 https://db.gcve.eu/sighting/a148c8ac-538d-4130-880d-0064994b9e57/export {"uuid": "a148c8ac-538d-4130-880d-0064994b9e57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-39576", "type": "seen", "source": "https://t.me/cvedetector/23106", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-39576 - WPAdverts Cross-site Scripting (XSS)\", \n \"Content\": \"CVE ID : CVE-2025-39576 \nPublished : April 16, 2025, 1:15 p.m. | 18\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Greg Winiarski WPAdverts allows Stored XSS. This issue affects WPAdverts: from n/a through 2.2.1. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"16 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-16T16:03:12.000000Z"} {"uuid": "a148c8ac-538d-4130-880d-0064994b9e57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-39576", "type": "seen", "source": "https://t.me/cvedetector/23106", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-39576 - WPAdverts Cross-site Scripting (XSS)\", \n \"Content\": \"CVE ID : CVE-2025-39576 \nPublished : April 16, 2025, 1:15 p.m. | 18\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Greg Winiarski WPAdverts allows Stored XSS. This issue affects WPAdverts: from n/a through 2.2.1. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"16 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-16T16:03:12.000000Z"} https://db.gcve.eu/sighting/a148c8ac-538d-4130-880d-0064994b9e57/export Wed, 16 Apr 2025 16:03:12 +0000 https://db.gcve.eu/sighting/a0cb211e-2022-4b8e-afde-a64db609267e/export {"uuid": "a0cb211e-2022-4b8e-afde-a64db609267e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3957", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13602", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-3957\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability was found in opplus springboot-admin 1.0 and classified as critical. This issue affects some unknown processing of the file \\src\\main\\resources\\mapper\\sys\\SysLogDao.xml. The manipulation of the argument order leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-04-27T03:31:05.367Z\n\ud83d\udccf Modified: 2025-04-27T03:31:05.367Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.306293\n2. https://vuldb.com/?ctiid.306293\n3. https://vuldb.com/?submit.557131\n4. https://github.com/mapl3miss/SQLi-in-springboot-admin-master/blob/main/sp-adminmaster-Vul/sp-adminmaster.md", "creation_timestamp": "2025-04-27T04:09:12.000000Z"} {"uuid": "a0cb211e-2022-4b8e-afde-a64db609267e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3957", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13602", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-3957\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability was found in opplus springboot-admin 1.0 and classified as critical. This issue affects some unknown processing of the file \\src\\main\\resources\\mapper\\sys\\SysLogDao.xml. The manipulation of the argument order leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-04-27T03:31:05.367Z\n\ud83d\udccf Modified: 2025-04-27T03:31:05.367Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.306293\n2. https://vuldb.com/?ctiid.306293\n3. https://vuldb.com/?submit.557131\n4. https://github.com/mapl3miss/SQLi-in-springboot-admin-master/blob/main/sp-adminmaster-Vul/sp-adminmaster.md", "creation_timestamp": "2025-04-27T04:09:12.000000Z"} https://db.gcve.eu/sighting/a0cb211e-2022-4b8e-afde-a64db609267e/export Sun, 27 Apr 2025 04:09:12 +0000 https://db.gcve.eu/sighting/323cf188-cdc9-4eb0-8574-0b35f749b8ab/export {"uuid": "323cf188-cdc9-4eb0-8574-0b35f749b8ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3957", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lnrganfkhl62", "content": "", "creation_timestamp": "2025-04-27T04:40:02.782448Z"} {"uuid": "323cf188-cdc9-4eb0-8574-0b35f749b8ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3957", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lnrganfkhl62", "content": "", "creation_timestamp": "2025-04-27T04:40:02.782448Z"} https://db.gcve.eu/sighting/323cf188-cdc9-4eb0-8574-0b35f749b8ab/export Sun, 27 Apr 2025 04:40:02 +0000 https://db.gcve.eu/sighting/fb232c4c-3107-4336-813a-3646df7fea61/export {"uuid": "fb232c4c-3107-4336-813a-3646df7fea61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3957", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnrqikj2d22d", "content": "", "creation_timestamp": "2025-04-27T07:35:37.717368Z"} {"uuid": "fb232c4c-3107-4336-813a-3646df7fea61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3957", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnrqikj2d22d", "content": "", "creation_timestamp": "2025-04-27T07:35:37.717368Z"} https://db.gcve.eu/sighting/fb232c4c-3107-4336-813a-3646df7fea61/export Sun, 27 Apr 2025 07:35:37 +0000 https://db.gcve.eu/sighting/0149eb8f-5d9f-45a7-8478-7d2c093731bb/export {"uuid": "0149eb8f-5d9f-45a7-8478-7d2c093731bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3957", "type": "seen", "source": "https://t.me/cvedetector/23827", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-3957 - Opplus Springboot-Admin SQL Injection Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-3957 \nPublished : April 27, 2025, 4:15 a.m. | 2\u00a0hours, 1\u00a0minute ago \nDescription : A vulnerability was found in opplus springboot-admin 1.0 and classified as critical. This issue affects some unknown processing of the file \\src\\main\\resources\\mapper\\sys\\SysLogDao.xml. The manipulation of the argument order leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"27 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-27T08:48:00.000000Z"} {"uuid": "0149eb8f-5d9f-45a7-8478-7d2c093731bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3957", "type": "seen", "source": "https://t.me/cvedetector/23827", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-3957 - Opplus Springboot-Admin SQL Injection Vulnerability\", \n \"Content\": \"CVE ID : CVE-2025-3957 \nPublished : April 27, 2025, 4:15 a.m. | 2\u00a0hours, 1\u00a0minute ago \nDescription : A vulnerability was found in opplus springboot-admin 1.0 and classified as critical. This issue affects some unknown processing of the file \\src\\main\\resources\\mapper\\sys\\SysLogDao.xml. The manipulation of the argument order leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"27 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-27T08:48:00.000000Z"} https://db.gcve.eu/sighting/0149eb8f-5d9f-45a7-8478-7d2c093731bb/export Sun, 27 Apr 2025 08:48:00 +0000