{"vulnerability": "CVE-2025-1282", "sightings": [{"uuid": "bd497c30-2c03-40a8-af00-9177fa182deb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1282", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114075691133815601", "content": "", "creation_timestamp": "2025-02-27T11:48:30.280853Z"}, {"uuid": "6d6dd0bc-f92e-4c58-a6a2-9ce5d43e7596", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12825", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mcm46skoss25", "content": "", "creation_timestamp": "2026-01-17T07:38:01.034793Z"}, {"uuid": "099a6177-76ea-450e-9635-4b65af4b99f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1282", "type": "seen", "source": "MISP/24306fae-b16b-4478-9297-d2973cdb583c", "content": "", "creation_timestamp": "2025-08-22T14:52:22.000000Z"}, {"uuid": "6b9db722-5d6c-49a4-9077-bfd2f6f98a28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12827", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m5vfqjb3pn2w", "content": "", "creation_timestamp": "2025-11-18T09:16:58.198322Z"}, {"uuid": "3574f79a-d969-436a-919e-8f284c0f28b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12826", "type": "seen", "source": "https://gist.github.com/Darkcrai86/ada5e7a452d2c207d58b2c3c3d67d2b7", "content": "", "creation_timestamp": "2025-12-04T08:11:54.000000Z"}, {"uuid": "dd88c03e-7d6d-4acb-8435-2dcb034464b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12826", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m75rkcvogr2q", "content": "", "creation_timestamp": "2025-12-04T10:34:44.844657Z"}, {"uuid": "8be60657-792a-4b88-950d-4855bc38f12b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-12826", "type": "seen", "source": "https://bsky.app/profile/atomicedge.bsky.social/post/3mjyssn3mtg2g", "content": "", "creation_timestamp": "2026-04-21T10:51:06.892303Z"}, {"uuid": "278fa824-8192-4e3e-936e-c610c613b1fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-12821", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mfabraxwth2v", "content": "", "creation_timestamp": "2026-02-19T19:01:27.666191Z"}, {"uuid": "89089e32-e42c-426d-a458-2c21f690c04b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1282", "type": "seen", "source": "https://t.me/cvedetector/19033", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-1282 - Car Dealer Automotive WordPress Theme File Deletion and Read Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-1282 \nPublished : Feb. 27, 2025, 9:15 a.m. | 2\u00a0hours, 5\u00a0minutes ago \nDescription : The Car Dealer Automotive WordPress Theme \u2013 Responsive theme for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_post_photo() and add_car() functions in all versions up to, and including, 1.6.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php). The add_car() function may also make it possible to read arbitrary files. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"27 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-27T12:52:29.000000Z"}, {"uuid": "7f4e98e6-6c4b-4e2e-bfd9-de7711c8c39d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12823", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m5vgn7hfa32q", "content": "", "creation_timestamp": "2025-11-18T09:33:01.126458Z"}, {"uuid": "e000405e-bf59-433b-b040-d02d1b0cb83d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12824", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7rel4mxa32e", "content": "", "creation_timestamp": "2025-12-12T05:35:47.932555Z"}, {"uuid": "fcd7f925-2db6-41f9-93be-b88049daee71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12824", "type": "seen", "source": "https://gist.github.com/Darkcrai86/c867ee029806f1c518d24b67654600b8", "content": "", "creation_timestamp": "2025-12-12T08:28:37.000000Z"}, {"uuid": "4931986b-d4ae-4324-b209-0be99e9be4eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12820", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mafojf7f4c22", "content": "", "creation_timestamp": "2025-12-20T07:27:02.143892Z"}, {"uuid": "c3a093a1-468e-4c18-8a76-09d5c1b7ebc2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1282", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5658", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-1282\n\ud83d\udd25 CVSS Score: 8.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: The Car Dealer Automotive WordPress Theme \u2013 Responsive theme for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_post_photo() and add_car() functions in all versions up to, and including, 1.6.3. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php). The add_car() function may also make it possible to read arbitrary files.\n\ud83d\udccf Published: 2025-02-27T08:22:04.186Z\n\ud83d\udccf Modified: 2025-02-27T08:22:04.186Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/edf4b588-8b67-425a-b0e1-d4382cb88dd1?source=cve\n2. https://themeforest.net/item/car-dealer-automotive-wordpress-theme-responsive/8574708?s_rank=7", "creation_timestamp": "2025-02-27T08:26:41.000000Z"}, {"uuid": "c9185db1-41d3-428e-a177-cb2a470a2562", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1282", "type": "seen", "source": "Telegram/u5U5HkdsjVTNTjKDjqO60RM8YSduevD2fdfzdqTTMF2XVOk", "content": "", "creation_timestamp": "2025-02-27T11:00:55.000000Z"}]}