{"vulnerability": "CVE-2025-1284", "sightings": [{"uuid": "e4ecc3e0-f9f2-4430-94ae-a67cedd0e5e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1284", "type": "seen", "source": "https://t.me/cvedetector/23668", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-1284 - Woocommerce Automatic Order Printing Insecure Direct Object Reference\", \n  \"Content\": \"CVE ID : CVE-2025-1284 \nPublished : April 24, 2025, 9:15 a.m. | 1\u00a0hour, 16\u00a0minutes ago \nDescription : The Woocommerce Automatic Order Printing | ( Formerly WooCommerce Google Cloud Print) plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.1 via the xc_woo_printer_preview AJAX action due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Subscriber-level access and above, to view other user's invoices and orders which can contain sensitive information. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"24 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-24T13:03:56.000000Z"}, {"uuid": "5ec84ef5-3c70-42a3-8b3e-3bc7eee7c8a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1284", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnkvntudhh24", "content": "", "creation_timestamp": "2025-04-24T14:19:26.483537Z"}, {"uuid": "6da75191-05e2-4c6f-a2e9-d45834a9b032", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12844", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m5isogjqt62w", "content": "", "creation_timestamp": "2025-11-13T09:03:50.515602Z"}, {"uuid": "a684f3ec-412c-44ce-89d4-2c9ce43b0022", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-12845", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mfaga6shfi2s", "content": "", "creation_timestamp": "2026-02-19T20:21:24.120953Z"}, {"uuid": "78bf1d5a-6369-4556-858d-0ade913c1648", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-1284", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/13207", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-1284\n\ud83d\udd25 CVSS Score: 4.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)\n\ud83d\udd39 Description: The Woocommerce Automatic Order Printing | ( Formerly WooCommerce Google Cloud Print) plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.1 via the xc_woo_printer_preview AJAX action due to missing validation on a user controlled key. This makes it possible for authenticated attackers, with Subscriber-level access and above, to view other user's invoices and orders which can contain sensitive information.\n\ud83d\udccf Published: 2025-04-24T08:23:48.546Z\n\ud83d\udccf Modified: 2025-04-24T08:23:48.546Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/6f593dce-4b56-46c0-becd-75fd16f165a8?source=cve\n2. https://codecanyon.net/item/woocommerce-google-cloud-print/21129093", "creation_timestamp": "2025-04-24T09:12:24.000000Z"}, {"uuid": "d2603f1f-4dc3-4031-8c46-365e9c083f4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12846", "type": "seen", "source": "https://gist.github.com/Darkcrai86/8a673562062795d45f0e4258e1e6a96a", "content": "", "creation_timestamp": "2025-11-11T12:02:50.000000Z"}, {"uuid": "8875be46-7873-4e0f-ac0c-d278718327e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12846", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m5e6o7km2l2u", "content": "", "creation_timestamp": "2025-11-11T12:55:09.363657Z"}, {"uuid": "ada06b1f-e511-49a2-b95a-006459e7a316", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12841", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7rxhk2xat2m", "content": "", "creation_timestamp": "2025-12-12T11:13:49.417351Z"}, {"uuid": "1c619d51-dfb7-4db9-92d5-b93d49afcca7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12841", "type": "seen", "source": "https://gist.github.com/Darkcrai86/ec7dbbcd699e57c904499a621ce6f55d", "content": "", "creation_timestamp": "2025-12-12T11:15:55.000000Z"}, {"uuid": "1a9d9ce5-c584-4cec-a0ad-b3a99266cc83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12841", "type": "seen", "source": "https://gist.github.com/Darkcrai86/d92dfecac33534bd0c2b13c887671e12", "content": "", "creation_timestamp": "2025-12-12T11:39:49.000000Z"}, {"uuid": "aa9b49e5-c03b-4d2f-8df8-1c70e7ff1843", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12840", "type": "seen", "source": "http://www.zerodayinitiative.com/advisories/ZDI-25-991/", "content": "", "creation_timestamp": "2025-11-11T05:00:00.000000Z"}, {"uuid": "438fc9b5-b89a-41e0-b4fb-1329e678bb1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12848", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m6iy4qbigd2s", "content": "", "creation_timestamp": "2025-11-26T04:06:30.829411Z"}, {"uuid": "7bf194fd-2436-4602-b807-6fa8fbe24d33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12846", "type": "seen", "source": "https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m5ecloi5ypl2", "content": "", "creation_timestamp": "2025-11-11T14:06:18.819983Z"}, {"uuid": "d71cba18-4b62-4a46-9dd3-fc83dd9362bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-12840", "type": "seen", "source": "https://bsky.app/profile/ferramentaslinux.bsky.social/post/3mdd56ezxo22q", "content": "", "creation_timestamp": "2026-01-26T11:26:56.124758Z"}]}