{"vulnerability": "CVE-2025-2004", "sightings": [{"uuid": "12b356f1-75ea-4822-9ff7-77b4e3fb6d0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20045", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113952492476102575", "content": "", "creation_timestamp": "2025-02-05T17:37:26.553313Z"}, {"uuid": "3b9e6e27-5ba5-4900-93c3-4c10a68f36ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20042", "type": "seen", "source": "MISP/e1f6260f-3311-441b-92ae-e04cd5eb5f72", "content": "", "creation_timestamp": "2025-08-19T13:26:45.000000Z"}, {"uuid": "3fdc6203-cd8a-46c1-8db5-f7b43666b2e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "Telegram/n1w7Ta-G54MRSrb1VMlA0xlYbSVuf31ZXu_QuieRtS0BjM0", "content": "", "creation_timestamp": "2026-04-08T23:30:06.000000Z"}, {"uuid": "3fac6790-7061-4487-b497-fb1946e64ec2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20043", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/16621", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-20043\n\ud83d\udd25 CVSS Score: 5.4 (cvssV4_0, Vector: CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: Uncontrolled search path for some Intel(R) RealSense\u2122 SDK software before version 2.56.2 may allow an authenticated user to potentially enable escalation of privilege via local access.\n\ud83d\udccf Published: 2025-05-13T21:01:51.214Z\n\ud83d\udccf Modified: 2025-05-16T03:55:48.633Z\n\ud83d\udd17 References:\n1. https://intel.com/content/www/us/en/security-center/advisory/intel-sa-01305.html", "creation_timestamp": "2025-05-16T04:34:04.000000Z"}, {"uuid": "51c99041-3130-45a0-bdf3-464004ea54ad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "https://t.me/cvedetector/22405", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2004 - WordPress Simple WP Events Remote File Deletion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2004 \nPublished : April 8, 2025, 5:15 a.m. | 2\u00a0hours, 3\u00a0minutes ago \nDescription : The Simple WP Events plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the wpe_delete_file AJAX action in all versions up to, and including, 1.8.17. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php). \nSeverity: 9.1 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-08T09:48:42.000000Z"}, {"uuid": "ba594349-29ef-455d-ac04-6c88f73ccabb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "Telegram/GhCcQwP6QnMjxsfMJ8qz6Pxy9JaPQ-Bi2BXFCcmddlxOyKI", "content": "", "creation_timestamp": "2025-04-08T07:01:28.000000Z"}, {"uuid": "c40072ce-906f-4748-b2c7-5f39034bb8ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20049", "type": "seen", "source": "MISP/af1fbe07-e10c-40c4-844e-d4419bdf6f80", "content": "", "creation_timestamp": "2025-08-22T13:26:18.000000Z"}, {"uuid": "6c2bf5a6-9c06-4df9-9b70-d3cc238506fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20049", "type": "seen", "source": "https://t.me/cvedetector/19165", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-20049 - \"Dario Health Portal XSS Vulnerability\"\", \n  \"Content\": \"CVE ID : CVE-2025-20049 \nPublished : Feb. 28, 2025, 5:15 p.m. | 1\u00a0hour, 7\u00a0minutes ago \nDescription : The Dario Health portal service application is vulnerable to XSS, which could allow an attacker to obtain sensitive information. \nSeverity: 5.8 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"28 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-28T19:32:18.000000Z"}, {"uuid": "c5439365-7515-4ca6-b114-13b990b4559f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10845", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2004\n\ud83d\udd25 CVSS Score: 9.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H)\n\ud83d\udd39 Description: The Simple WP Events plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the wpe_delete_file AJAX action in all versions up to, and including, 1.8.17. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php).\n\ud83d\udccf Published: 2025-04-08T04:21:30.255Z\n\ud83d\udccf Modified: 2025-04-08T04:21:30.255Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/abdca93e-f68d-4a96-8bd7-443ee46ccb5a?source=cve\n2. https://plugins.trac.wordpress.org/browser/simple-wp-events/trunk/admin/includes/wp-events-export-events.php#L399", "creation_timestamp": "2025-04-08T04:46:35.000000Z"}, {"uuid": "c0d7f6e6-ad21-4173-8193-9bb904acb725", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20049", "type": "seen", "source": "Telegram/uWLcmYC6jCIV_SGVF8kiAUoyVooZ0476FizKrNfPFDK3d0Qo", "content": "", "creation_timestamp": "2025-03-02T11:45:38.000000Z"}, {"uuid": "b2eccfd3-d400-43e1-a243-5da6246ab02d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20049", "type": "seen", "source": "Telegram/IBGJ8kZ9fJgVDBOQmiT-73KMxygXubCINOR_PAzZc5_egT0", "content": "", "creation_timestamp": "2025-02-28T19:30:53.000000Z"}, {"uuid": "b3f77e1c-78a6-4abc-b62f-db402c553c1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20045", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhh6k3cos62j", "content": "", "creation_timestamp": "2025-02-05T18:16:33.949545Z"}, {"uuid": "2ca57d1f-dbde-4afe-ac0f-2e98af84fdd3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lmbr75tm2k2h", "content": "", "creation_timestamp": "2025-04-08T05:40:28.350709Z"}, {"uuid": "b1f6a608-9b35-4072-925d-17193a0ac014", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114301239303064883", "content": "", "creation_timestamp": "2025-04-08T07:48:21.667173Z"}, {"uuid": "0657f657-7323-4249-afec-43621658cf5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2004", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lmbzf4ixhn2h", "content": "", "creation_timestamp": "2025-04-08T08:06:58.680110Z"}, {"uuid": "5d505f5a-cc53-431c-9d80-1b89bd8bcd64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20049", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/5937", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-20049\n\ud83d\udd25 CVSS Score: 5.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:N/A:N)\n\ud83d\udd39 Description: The Dario Health portal service application is vulnerable to XSS, which could allow an attacker to obtain sensitive information.\n\ud83d\udccf Published: 2025-02-28T17:04:11.352Z\n\ud83d\udccf Modified: 2025-02-28T17:13:18.822Z\n\ud83d\udd17 References:\n1. https://www.cisa.gov/news-events/ics-medical-advisories/icsma-25-058-01\n2. https://www.dariohealth.com/contact/", "creation_timestamp": "2025-02-28T17:27:26.000000Z"}]}