{"vulnerability": "CVE-2025-2213", "sightings": [{"uuid": "4ff88d90-8812-44fc-84e4-687fff29b0e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-22131", "type": "seen", "source": "https://bsky.app/profile/0xdf.bsky.social/post/3mfwii6uox72k", "content": "", "creation_timestamp": "2026-02-28T15:00:13.777697Z"}, {"uuid": "2058a618-b354-4f8f-8b60-d8f5d71dba10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-22131", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mfxoxwyp2j2p", "content": "", "creation_timestamp": "2026-03-01T02:29:07.749243Z"}, {"uuid": "10b685b9-755f-4ddb-b132-cce0ac004d94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22131", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/50334", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPOC for the vuln CVE-2025-22131\nURL\uff1ahttps://github.com/s0ck37/CVE-2025-22131-POC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-05T06:05:49.000000Z"}, {"uuid": "3e1f3ab7-cb41-4096-9f4e-15d2aee25683", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22138", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/1404", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22138\n\ud83d\udd39 Description: @codidact/qpixel is a Q&A-based community knowledge-sharing software. In affected versions when a category is set to private or limited-visibility within QPixel's admin tools, suggested edits within this category can still be viewed by unprivileged or anonymous users via the suggested edit queue. This issue has not yet been patched and no workarounds are available. Users are advised to follow the development repo for updates.\n\n### Patches\nNot yet patched.\n\n### Workarounds\nNone available. Private or limited-visibility categories should not be considered ways to store sensitive information.\n\n### References\nInternal: [SUPPORT-114](https://codidact.atlassian.net/issues/SUPPORT-114)\n\ud83d\udccf Published: 2025-01-13T20:34:29.354Z\n\ud83d\udccf Modified: 2025-01-13T20:34:29.354Z\n\ud83d\udd17 References:\n1. https://github.com/codidact/qpixel/security/advisories/GHSA-pv74-hcg9-65r4", "creation_timestamp": "2025-01-13T21:12:32.000000Z"}, {"uuid": "090f1a24-e248-4e7c-a502-b10d1f5bee3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22131", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2368", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22131\n\ud83d\udd39 Description: PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Cross-Site Scripting (XSS) vulnerability in the code which translates the XLSX file into a HTML representation and displays it in the response.\n\ud83d\udccf Published: 2025-01-20T15:31:19.693Z\n\ud83d\udccf Modified: 2025-01-20T15:31:19.693Z\n\ud83d\udd17 References:\n1. https://github.com/PHPOffice/PhpSpreadsheet/security/advisories/GHSA-79xx-vf93-p7cx\n2. https://github.com/PHPOffice/PhpSpreadsheet/commit/4088381ccfaf241d7d42c333de0dc8c98e338743", "creation_timestamp": "2025-01-20T16:01:49.000000Z"}, {"uuid": "c827b622-7620-4f10-a4df-77c5ba77453d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22139", "type": "seen", "source": "https://t.me/cvedetector/14727", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22139 - WeGIA Reflected Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2025-22139 \nPublished : Jan. 8, 2025, 7:15 p.m. | 26\u00a0minutes ago \nDescription : WeGIA is a web manager for charitable institutions. A Reflected Cross-Site Scripting (XSS) vulnerability was identified in the configuracao_geral.php endpoint of the WeGIA application. This vulnerability allows attackers to inject malicious scripts in the msg_c parameter. This vulnerability is fixed in 3.2.8. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T20:50:51.000000Z"}, {"uuid": "de1bbf85-271b-4b18-8c5b-5f18094c46c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22130", "type": "seen", "source": "https://t.me/cvedetector/14689", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22130 - Soft Serve Git Server Path Traversal Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22130 \nPublished : Jan. 8, 2025, 4:15 p.m. | 43\u00a0minutes ago \nDescription : Soft Serve is a self-hostable Git server for the command line. Prior to 0.8.2 , a path traversal attack allows existing non-admin users to access and take over other user's repositories. A malicious user then can modify, delete, and arbitrarily repositories as if they were an admin user without explicitly giving them permissions. This is patched in v0.8.2. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T18:19:07.000000Z"}, {"uuid": "9f6a3527-1b80-46f1-a0f5-0194604264c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22137", "type": "seen", "source": "https://t.me/cvedetector/14691", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22137 - Pingvin Share File Traversal\", \n  \"Content\": \"CVE ID : CVE-2025-22137 \nPublished : Jan. 8, 2025, 4:15 p.m. | 43\u00a0minutes ago \nDescription : Pingvin Share is a self-hosted file sharing platform and an alternative for WeTransfer. This vulnerability allows an authenticated or unauthenticated (if anonymous shares are allowed) user to overwrite arbitrary files on the server, including sensitive system files, via HTTP POST requests. The issue has been patched in version 1.4.0. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T18:19:09.000000Z"}, {"uuid": "3023fcb3-9c24-4bf0-9927-ea001e2aec27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22136", "type": "seen", "source": "https://t.me/cvedetector/14690", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22136 - Tabby Electron Fuses Code Injection\", \n  \"Content\": \"CVE ID : CVE-2025-22136 \nPublished : Jan. 8, 2025, 4:15 p.m. | 43\u00a0minutes ago \nDescription : Tabby (formerly Terminus) is a highly configurable terminal emulator. Prior to 1.0.217 , Tabby enables several high-risk Electron Fuses, including RunAsNode, EnableNodeCliInspectArguments, and EnableNodeOptionsEnvironmentVariable. These fuses create potential code injection vectors even though the application is signed with hardened runtime and lacks dangerous entitlements such as com.apple.security.cs.disable-library-validation and com.apple.security.cs.allow-dyld-environment-variables. This vulnerability is fixed in 1.0.217. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-08T18:19:08.000000Z"}, {"uuid": "5ffd1406-47d6-486d-bc9e-c543c94c0353", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22132", "type": "seen", "source": "Telegram/c2TPAvqLpJT_YPr9GtznNmTqBdf-OwF-7KmbuUEeI0kezi39", "content": "", "creation_timestamp": "2025-02-14T10:09:21.000000Z"}, {"uuid": "17578dfe-a0f0-463a-ac66-468f76b43b70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22139", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfausq4ppg2m", "content": "", "creation_timestamp": "2025-01-08T19:16:05.395963Z"}, {"uuid": "07884251-3f71-4554-b927-f5cb6edeee3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22138", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113822983361272164", "content": "", "creation_timestamp": "2025-01-13T20:41:34.055925Z"}, {"uuid": "0efd9944-1c7f-4326-81b6-f554d7dc1d09", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22136", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113793587594187900", "content": "", "creation_timestamp": "2025-01-08T16:05:50.351921Z"}, {"uuid": "cf6fb5c0-d29f-40eb-afba-1de2c74e470f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22137", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113793626161781850", "content": "", "creation_timestamp": "2025-01-08T16:15:38.729517Z"}, {"uuid": "4afce04b-1a49-48d9-bff3-7040d15fe3e8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22136", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfakrdsacj2a", "content": "", "creation_timestamp": "2025-01-08T16:16:21.175892Z"}, {"uuid": "6420eaa1-eaa4-4e95-97e8-42b0111056be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22137", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfakrgao2a2x", "content": "", "creation_timestamp": "2025-01-08T16:16:23.788005Z"}, {"uuid": "3ab1c829-7df5-4a01-946a-18816f849e38", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22139", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113794159917395964", "content": "", "creation_timestamp": "2025-01-08T18:31:23.286007Z"}, {"uuid": "4010797c-c984-4643-b768-dc126f6f7e10", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22134", "type": "seen", "source": "https://gist.github.com/jamincollins/eeeaa5b5a021f181d02cd557edf76515", "content": "", "creation_timestamp": "2025-07-09T21:28:20.000000Z"}, {"uuid": "de0df4b0-3534-4cf6-aac2-7232ec13767c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22133", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lyel7q74232t", "content": "", "creation_timestamp": "2025-09-09T01:33:43.938928Z"}, {"uuid": "6f915ae2-4278-4b2a-9923-54e938feecaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22136", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/710", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22136\n\ud83d\udd39 Description: Tabby (formerly Terminus) is a highly configurable terminal emulator. Prior to 1.0.217 , Tabby enables several high-risk Electron Fuses, including RunAsNode, EnableNodeCliInspectArguments, and EnableNodeOptionsEnvironmentVariable. These fuses create potential code injection vectors even though the application is signed with hardened runtime and lacks dangerous entitlements such as com.apple.security.cs.disable-library-validation and com.apple.security.cs.allow-dyld-environment-variables. This vulnerability is fixed in 1.0.217.\n\ud83d\udccf Published: 2025-01-08T16:02:01.460Z\n\ud83d\udccf Modified: 2025-01-08T16:02:01.460Z\n\ud83d\udd17 References:\n1. https://github.com/Eugeny/tabby/security/advisories/GHSA-prcj-7rvc-26h4\n2. https://github.com/Eugeny/tabby/commit/93513541f7161fa8a59491603cabb6a101c0c08e", "creation_timestamp": "2025-01-08T16:14:36.000000Z"}, {"uuid": "8c18998c-4e49-4132-822a-33edcd109067", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-22134", "type": "seen", "source": "https://gist.github.com/zhuozhenwei/0a4fe54641c85f16356fbcde2ea6aa08", "content": "", "creation_timestamp": "2026-06-08T10:41:43.000000Z"}, {"uuid": "a92a320a-b3ec-47f7-9261-6869eca16827", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22130", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113793510200311392", "content": "", "creation_timestamp": "2025-01-08T15:46:09.282575Z"}, {"uuid": "0d9a07f1-d2d0-4a7c-a3d8-f2c8daa3e9e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22137", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113793757744423238", "content": "", "creation_timestamp": "2025-01-08T16:49:07.291950Z"}, {"uuid": "9c51df5e-80c6-43c7-9b26-b8bfa067917e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22132", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113789358194226275", "content": "", "creation_timestamp": "2025-01-07T22:10:14.724708Z"}, {"uuid": "99cb2e48-b627-4963-9f07-20f0fc597036", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22133", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113789358208827936", "content": "", "creation_timestamp": "2025-01-07T22:10:14.989283Z"}, {"uuid": "c2622e93-1f31-46bd-832c-a1dec7f0b89a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22132", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf6ofjv27f22", "content": "", "creation_timestamp": "2025-01-07T22:16:00.627500Z"}, {"uuid": "1d1d9f30-0597-4ea0-84cf-35b7b1debf1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22133", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf6ofmiwrn22", "content": "", "creation_timestamp": "2025-01-07T22:16:03.259892Z"}, {"uuid": "cde574e6-dacf-4ced-803b-92e13022c582", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22132", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lf6pvuqgft2b", "content": "", "creation_timestamp": "2025-01-07T22:43:02.616201Z"}, {"uuid": "bcf99de7-237a-4e8a-85a8-4d33fb744c1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22132", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lf6pvv7ww22g", "content": "", "creation_timestamp": "2025-01-07T22:43:03.541564Z"}, {"uuid": "c211af72-3bfb-4935-8263-a62561259d51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22133", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lf6pvvdd2l2y", "content": "", "creation_timestamp": "2025-01-07T22:43:04.137192Z"}, {"uuid": "858f0ceb-7e9d-4eb0-bebd-a8d1d6849230", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22133", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lf6pvvlobn2r", "content": "", "creation_timestamp": "2025-01-07T22:43:04.898756Z"}, {"uuid": "e8e47c3e-5f2f-4dbf-9682-e7daceb0ffca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22132", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113789508681208525", "content": "", "creation_timestamp": "2025-01-07T22:48:33.820129Z"}, {"uuid": "00d64d46-64b2-4608-bb01-19e6be708a07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22133", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113789508728027417", "content": "", "creation_timestamp": "2025-01-07T22:48:34.023770Z"}, {"uuid": "7a0878b7-18d2-4286-b4ac-fbe8eaaf9a85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22131", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3ly4knrdshf2a", "content": "", "creation_timestamp": "2025-09-05T21:02:24.908473Z"}, {"uuid": "39b5661d-baea-4b7a-b730-c28e2dafd2d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22131", "type": "published-proof-of-concept", "source": "Telegram/ubPNL18fq38V-85eNQiBmYAz7q_Pl82W275HnublzuemSJo", "content": "", "creation_timestamp": "2025-09-05T09:00:05.000000Z"}, {"uuid": "2e747673-ab63-467f-9283-ff346b8e7288", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22131", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/50135", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPoC for CVE-2025-22131\nURL\uff1ahttps://github.com/ZzN1NJ4/CVE-2025-22131-PoC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-03T15:24:22.000000Z"}, {"uuid": "13e09b49-6624-4394-b2b4-eb7c959cf18a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22131", "type": "published-proof-of-concept", "source": "Telegram/7VaWiDiZCdClD5jKnwGdCFY3BMT4SvcYbJTGW3v_R4In6yE", "content": "", "creation_timestamp": "2025-09-03T21:00:04.000000Z"}, {"uuid": "df577a24-322a-4181-b935-17e15e72ae3b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22132", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/587", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22132\n\ud83d\udd39 Description: WeGIA is a web manager for charitable institutions. A Cross-Site Scripting (XSS) vulnerability was identified in the file upload functionality of the WeGIA/html/socio/sistema/controller/controla_xlsx.php endpoint. By uploading a file containing malicious JavaScript code, an attacker can execute arbitrary scripts in the context of a victim's browser. This can lead to information theft, session hijacking, and other forms of client-side exploitation. This vulnerability is fixed in 3.2.7.\n\ud83d\udccf Published: 2025-01-07T22:04:41.805Z\n\ud83d\udccf Modified: 2025-01-07T22:04:41.805Z\n\ud83d\udd17 References:\n1. https://github.com/nilsonLazarin/WeGIA/security/advisories/GHSA-h8hr-jhcx-fcv9\n2. https://github.com/nilsonLazarin/WeGIA/commit/330f641db43cfb0c8ea8bb6025cc0732de4d4d6b", "creation_timestamp": "2025-01-07T22:37:05.000000Z"}, {"uuid": "7ea69986-b929-403b-984b-b4505fdc3139", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22133", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/586", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22133\n\ud83d\udd39 Description: WeGIA is a web manager for charitable institutions. Prior to 3.2.8, a critical vulnerability was identified in the /WeGIA/html/socio/sistema/controller/controla_xlsx.php endpoint. The endpoint accepts file uploads without proper validation, allowing the upload of malicious files, such as .phar, which can then be executed by the server. This vulnerability is fixed in 3.2.8.\n\ud83d\udccf Published: 2025-01-07T22:07:13.958Z\n\ud83d\udccf Modified: 2025-01-07T22:07:13.958Z\n\ud83d\udd17 References:\n1. https://github.com/nilsonLazarin/WeGIA/security/advisories/GHSA-mjgr-2jxv-v8qf\n2. https://github.com/nilsonLazarin/WeGIA/commit/a08f04de96d3caec85496d7a89a5b82d1960d9dd", "creation_timestamp": "2025-01-07T22:36:49.000000Z"}, {"uuid": "bab38711-b551-4edb-906c-d3599e8d66f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22134", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1397", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22134\n\ud83d\udd39 Description: When switching to other buffers using the :all command and visual mode still being active, this may cause a heap-buffer overflow, because Vim does not properly end visual mode and therefore may try to access beyond the end of a line in a buffer. In Patch 9.1.1003 Vim will correctly reset the visual mode before opening other windows and buffers and therefore fix this bug. In addition it does verify that it won't try to access a position if the position is greater than the corresponding buffer line. Impact is medium since the user must have switched on visual mode when executing the :all ex command. The Vim project would like to thank github user gandalf4a for reporting this issue. The issue has been fixed as of Vim patch v9.1.1003\n\ud83d\udccf Published: 2025-01-13T20:41:08.144Z\n\ud83d\udccf Modified: 2025-01-13T20:41:08.144Z\n\ud83d\udd17 References:\n1. https://github.com/vim/vim/security/advisories/GHSA-5rgf-26wj-48v8\n2. https://github.com/vim/vim/commit/c9a1e257f1630a0866447e53a564f7ff96a80ead", "creation_timestamp": "2025-01-13T21:12:13.000000Z"}, {"uuid": "dc943411-560b-4712-a761-b24d7c0c1444", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22131", "type": "seen", "source": "https://t.me/cvedetector/15898", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22131 - PhpSpreadsheet XSS\", \n  \"Content\": \"CVE ID : CVE-2025-22131 \nPublished : Jan. 20, 2025, 4:15 p.m. | 43\u00a0minutes ago \nDescription : PhpSpreadsheet is a PHP library for reading and writing spreadsheet files. Cross-Site Scripting (XSS) vulnerability in the code which translates the XLSX file into a HTML representation and displays it in the response. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"20 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-20T18:23:24.000000Z"}, {"uuid": "7cd89dde-58d2-439a-bccd-d7945fd442bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22133", "type": "seen", "source": "https://t.me/cvedetector/14611", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22133 - WeGIA File Upload Vulnerability (Remote Code Execution)\", \n  \"Content\": \"CVE ID : CVE-2025-22133 \nPublished : Jan. 7, 2025, 10:15 p.m. | 34\u00a0minutes ago \nDescription : WeGIA is a web manager for charitable institutions. Prior to 3.2.8, a critical vulnerability was identified in the /WeGIA/html/socio/sistema/controller/controla_xlsx.php endpoint. The endpoint accepts file uploads without proper validation, allowing the upload of malicious files, such as .phar, which can then be executed by the server. This vulnerability is fixed in 3.2.8. \nSeverity: 9.9 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-07T23:55:31.000000Z"}, {"uuid": "654e7de4-164c-4259-bbd6-04be93ef7501", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22132", "type": "seen", "source": "https://t.me/cvedetector/14610", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22132 - WeGIA Charitable Institutions XSS File Upload Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22132 \nPublished : Jan. 7, 2025, 10:15 p.m. | 34\u00a0minutes ago \nDescription : WeGIA is a web manager for charitable institutions. A Cross-Site Scripting (XSS) vulnerability was identified in the file upload functionality of the WeGIA/html/socio/sistema/controller/controla_xlsx.php endpoint. By uploading a file containing malicious JavaScript code, an attacker can execute arbitrary scripts in the context of a victim's browser. This can lead to information theft, session hijacking, and other forms of client-side exploitation. This vulnerability is fixed in 3.2.7. \nSeverity: 8.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-07T23:55:30.000000Z"}, {"uuid": "9006cc8e-dba0-4d26-8d62-cc30f58623c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22138", "type": "seen", "source": "https://t.me/cvedetector/15182", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22138 - \"QPixel Suggested Edit Queue Privilege Escalation in Q&A-based Community Knowledge-Sharing Software\"\", \n  \"Content\": \"CVE ID : CVE-2025-22138 \nPublished : Jan. 13, 2025, 9:15 p.m. | 33\u00a0minutes ago \nDescription : @codidact/qpixel is a Q&A-based community knowledge-sharing software. In affected versions when a category is set to private or limited-visibility within QPixel's admin tools, suggested edits within this category can still be viewed by unprivileged or anonymous users via the suggested edit queue. This issue has not yet been patched and no workarounds are available. Users are advised to follow the development repo for updates.  \n  \n### Patches  \nNot yet patched.  \n  \n### Workarounds  \nNone available. Private or limited-visibility categories should not be considered ways to store sensitive information.  \n  \n### References  \nInternal: [SUPPORT-114]() \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-13T22:56:02.000000Z"}, {"uuid": "2c72d3f8-5bd0-471a-839e-ede970ae73f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22134", "type": "seen", "source": "https://t.me/cvedetector/15181", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22134 - Vim Visual Mode Heap-Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2025-22134 \nPublished : Jan. 13, 2025, 9:15 p.m. | 33\u00a0minutes ago \nDescription : When switching to other buffers using the :all command and visual mode still being active, this may cause a heap-buffer overflow, because Vim does not properly end visual mode and therefore may try to access beyond the end of a line in a buffer. In Patch 9.1.1003 Vim will correctly reset the visual mode before opening other windows and buffers and therefore fix this bug. In addition it does verify that it won't try to access a position if the position is greater than the corresponding buffer line. Impact is medium since the user must have switched on visual mode when executing the :all ex command. The Vim project would like to thank github user gandalf4a for reporting this issue. The issue has been fixed as of Vim patch v9.1.1003 \nSeverity: 4.2 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"13 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-13T22:56:01.000000Z"}, {"uuid": "37a20251-7401-418e-bebc-fc40394d3bb1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22134", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113823005501409680", "content": "", "creation_timestamp": "2025-01-13T20:47:14.494140Z"}, {"uuid": "33fe90d5-2e94-4c71-80ae-20c1cac30c7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22134", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/113823016558641219", "content": "", "creation_timestamp": "2025-01-13T20:50:01.458530Z"}, {"uuid": "71aa1bfb-16f9-4649-b377-eaa8dc8fbac1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22139", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfawmb256i2q", "content": "", "creation_timestamp": "2025-01-08T19:48:16.926982Z"}, {"uuid": "0cf1b624-fd63-4f34-8b04-48a5019fc23d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22134", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfnnt5eyxd2f", "content": "", "creation_timestamp": "2025-01-13T21:15:39.483776Z"}, {"uuid": "9a51e2d9-afde-4050-b23a-e84a02f1f739", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22138", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfnnt7obhr2r", "content": "", "creation_timestamp": "2025-01-13T21:15:41.752490Z"}, {"uuid": "00a14f27-0ad1-4725-bc86-c75af8262a33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22130", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfakrb4vc52i", "content": "", "creation_timestamp": "2025-01-08T16:16:18.544813Z"}, {"uuid": "d1e236d7-c533-4b15-bfd4-a11add1a9232", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22130", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfamb4mgcr2w", "content": "", "creation_timestamp": "2025-01-08T16:43:05.296438Z"}, {"uuid": "10001f30-5e29-489b-90cc-dd9651d642d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22137", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfamb4yjj42e", "content": "", "creation_timestamp": "2025-01-08T16:43:06.676972Z"}, {"uuid": "59358414-7b2b-4412-b4fc-2612db910b39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22136", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfamb5mmxx2q", "content": "", "creation_timestamp": "2025-01-08T16:43:09.196505Z"}, {"uuid": "587f12fa-f9cc-4d63-b172-4d8c4bbf1c80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22137", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfamb5r73o2b", "content": "", "creation_timestamp": "2025-01-08T16:43:09.831704Z"}, {"uuid": "9169bc8d-01b5-4551-a286-5cda48309a86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22131", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113861423899231681", "content": "", "creation_timestamp": "2025-01-20T15:37:30.140399Z"}, {"uuid": "ad68e0e3-4576-4367-8bab-c436f9bd850d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22131", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lg6qdipp5w2p", "content": "", "creation_timestamp": "2025-01-20T16:15:51.193233Z"}, {"uuid": "1665ce78-73d1-4831-a4e9-eb155b0bb3f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22131", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lg6sig4x2o2g", "content": "", "creation_timestamp": "2025-01-20T16:54:23.941215Z"}, {"uuid": "56fc0b4f-bef1-4175-8fe0-87438bd83ae7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2213", "type": "seen", "source": "MISP/682bdba3-46b7-4a8f-b7be-c6bf4b4f9868", "content": "", "creation_timestamp": "2025-08-13T13:26:34.000000Z"}, {"uuid": "31e5b391-1f5b-44ca-9422-4052ae6a633a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22133", "type": "seen", "source": "https://gist.github.com/Darkcrai86/45c460a2e6e31b85cccfbd496d9667d9", "content": "", "creation_timestamp": "2025-08-30T10:23:32.000000Z"}]}