<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<rss xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/" version="2.0">
  <channel>
    <title>Most recent sightings.</title>
    <link>https://db.gcve.eu</link>
    <description>Contains only the most 10 recent sightings.</description>
    <docs>http://www.rssboard.org/rss-specification</docs>
    <generator>python-feedgen</generator>
    <language>en</language>
    <lastBuildDate>Sun, 12 Jul 2026 15:45:18 +0000</lastBuildDate>
    <item>
      <title>d8a1330f-f23f-4285-85e3-3c5e5c37525c</title>
      <link>https://db.gcve.eu/sighting/d8a1330f-f23f-4285-85e3-3c5e5c37525c/export</link>
      <description>{"uuid": "d8a1330f-f23f-4285-85e3-3c5e5c37525c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6065", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrks2pp3iz2a", "content": "", "creation_timestamp": "2025-06-14T10:55:49.082893Z"}</description>
      <content:encoded>{"uuid": "d8a1330f-f23f-4285-85e3-3c5e5c37525c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6065", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrks2pp3iz2a", "content": "", "creation_timestamp": "2025-06-14T10:55:49.082893Z"}</content:encoded>
      <guid isPermaLink="false">https://db.gcve.eu/sighting/d8a1330f-f23f-4285-85e3-3c5e5c37525c/export</guid>
      <pubDate>Sat, 14 Jun 2025 10:55:49 +0000</pubDate>
    </item>
    <item>
      <title>f2f037eb-0c24-41d4-87b5-cffa8fd34de4</title>
      <link>https://db.gcve.eu/sighting/f2f037eb-0c24-41d4-87b5-cffa8fd34de4/export</link>
      <description>{"uuid": "f2f037eb-0c24-41d4-87b5-cffa8fd34de4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6065", "type": "seen", "source": "Telegram/C3UTwynst7UtmZY1a-TGsY39b-ZaceEinE1WZTPPvZFFkCA", "content": "", "creation_timestamp": "2025-06-14T09:32:18.000000Z"}</description>
      <content:encoded>{"uuid": "f2f037eb-0c24-41d4-87b5-cffa8fd34de4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6065", "type": "seen", "source": "Telegram/C3UTwynst7UtmZY1a-TGsY39b-ZaceEinE1WZTPPvZFFkCA", "content": "", "creation_timestamp": "2025-06-14T09:32:18.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://db.gcve.eu/sighting/f2f037eb-0c24-41d4-87b5-cffa8fd34de4/export</guid>
      <pubDate>Sat, 14 Jun 2025 09:32:18 +0000</pubDate>
    </item>
    <item>
      <title>25748e93-65e2-4b0f-b326-838ac71fa996</title>
      <link>https://db.gcve.eu/sighting/25748e93-65e2-4b0f-b326-838ac71fa996/export</link>
      <description>{"uuid": "25748e93-65e2-4b0f-b326-838ac71fa996", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6065", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18372", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-6065\n\ud83d\udd25 CVSS Score: 9.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H)\n\ud83d\udd39 Description: The Image Resizer On The Fly plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'delete' task in all versions up to, and including, 1.1. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).\n\ud83d\udccf Published: 2025-06-14T08:23:21.618Z\n\ud83d\udccf Modified: 2025-06-14T08:23:21.618Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/14877ff6-e393-41a3-91c1-fe7f477297cc?source=cve\n2. https://plugins.trac.wordpress.org/browser/image-resizer-on-the-fly/trunk/image-resizer-on-the-fly.php#L25\n3. https://wordpress.org/plugins/image-resizer-on-the-fly/", "creation_timestamp": "2025-06-14T08:34:20.000000Z"}</description>
      <content:encoded>{"uuid": "25748e93-65e2-4b0f-b326-838ac71fa996", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6065", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18372", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-6065\n\ud83d\udd25 CVSS Score: 9.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H)\n\ud83d\udd39 Description: The Image Resizer On The Fly plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'delete' task in all versions up to, and including, 1.1. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).\n\ud83d\udccf Published: 2025-06-14T08:23:21.618Z\n\ud83d\udccf Modified: 2025-06-14T08:23:21.618Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/14877ff6-e393-41a3-91c1-fe7f477297cc?source=cve\n2. https://plugins.trac.wordpress.org/browser/image-resizer-on-the-fly/trunk/image-resizer-on-the-fly.php#L25\n3. https://wordpress.org/plugins/image-resizer-on-the-fly/", "creation_timestamp": "2025-06-14T08:34:20.000000Z"}</content:encoded>
      <guid isPermaLink="false">https://db.gcve.eu/sighting/25748e93-65e2-4b0f-b326-838ac71fa996/export</guid>
      <pubDate>Sat, 14 Jun 2025 08:34:20 +0000</pubDate>
    </item>
  </channel>
</rss>
