{"vulnerability": "CVE-2025-2395", "sightings": [{"uuid": "dc8f30d0-89ac-456f-b047-f21ad1bba858", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23951", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7jl5tc42s", "content": "", "creation_timestamp": "2025-01-16T21:21:03.826493Z"}, {"uuid": "076e4517-707b-4b97-b474-50c1486453fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23954", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7jnlzsl2n", "content": "", "creation_timestamp": "2025-01-16T21:21:06.446966Z"}, {"uuid": "b72df8f9-5213-4835-b5e1-8a21bcb04b05", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23951", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfvb46yrgq2k", "content": "", "creation_timestamp": "2025-01-16T21:49:26.283109Z"}, {"uuid": "0fba005f-3658-48a1-9c46-7e00bc11e088", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23957", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7jsvr4c2j", "content": "", "creation_timestamp": "2025-01-16T21:21:12.018763Z"}, {"uuid": "246ae15f-dbbc-4f5d-92f4-c1cd2e92c87f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23955", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lfvb47epkl2b", "content": "", "creation_timestamp": "2025-01-16T21:49:27.060073Z"}, {"uuid": "cca77153-6cb9-47e4-8000-9f412079f6b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23950", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7jirat62p", "content": "", "creation_timestamp": "2025-01-16T21:21:01.354345Z"}, {"uuid": "1e03f260-dc4f-42f2-a50d-9117d45a21ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23955", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7jqboco2e", "content": "", "creation_timestamp": "2025-01-16T21:21:09.167073Z"}, {"uuid": "617ea567-e4e7-4544-b840-e2f10704e877", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23953", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgdoaqrw6v2e", "content": "", "creation_timestamp": "2025-01-22T15:21:50.211764Z"}, {"uuid": "ad43e451-2eb0-49e3-bf44-3ffb7e7b7753", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23959", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgdoatypav2e", "content": "", "creation_timestamp": "2025-01-22T15:21:53.672013Z"}, {"uuid": "80a30c51-de86-433c-9517-f6c74a23ad25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23953", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113872795470884994", "content": "", "creation_timestamp": "2025-01-22T15:49:26.846067Z"}, {"uuid": "58c5d881-e6bf-4010-ab7c-1c45958f1049", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23959", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgdpsq3b6e2w", "content": "", "creation_timestamp": "2025-01-22T15:49:50.434942Z"}, {"uuid": "3cd5d3df-4612-4a42-ae6c-f5d1801f6f3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23953", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgdpsqio7i2u", "content": "", "creation_timestamp": "2025-01-22T15:49:52.566093Z"}, {"uuid": "d85b653c-548d-42a8-9201-bc4cf790f21f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23953", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lgdpsqp6332b", "content": "", "creation_timestamp": "2025-01-22T15:49:53.609207Z"}, {"uuid": "b35efd29-426c-4481-a52b-aa134bcd1e1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2395", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lkmazvkbra2r", "content": "", "creation_timestamp": "2025-03-17T23:00:06.624496Z"}, {"uuid": "e3573eca-5c31-4288-97f6-9ca3791ff7fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2395", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lkkkbsyv2v2v", "content": "", "creation_timestamp": "2025-03-17T06:40:15.858909Z"}, {"uuid": "75f76925-6b1f-462d-91e0-41e641859e0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2395", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114176668990422188", "content": "", "creation_timestamp": "2025-03-17T07:48:28.612546Z"}, {"uuid": "be4f37f0-76d9-4745-8f28-0812aa73da65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2395", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkks5zexxi2n", "content": "", "creation_timestamp": "2025-03-17T09:01:18.237062Z"}, {"uuid": "6fdc623e-572d-4933-9a0e-8c4447955ebe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2395", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-21T03:19:31.000000Z"}, {"uuid": "1ef23b76-3cbb-463e-bd99-aa532ec339d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23954", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2207", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23954\n\ud83d\udd39 Description: Missing Authorization vulnerability in AWcode &amp; KingfisherFox Salvador \u2013 AI Image Generator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Salvador \u2013 AI Image Generator: from n/a through 1.0.11.\n\ud83d\udccf Published: 2025-01-16T20:08:08.694Z\n\ud83d\udccf Modified: 2025-01-17T20:24:36.547Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/salvador-ai-image-generator/vulnerability/wordpress-salvador-ai-image-generator-plugin-1-0-11-broken-access-control-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-17T20:57:50.000000Z"}, {"uuid": "2460297d-f5b1-4a8f-8721-5b1efb813c00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23950", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2205", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23950\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Said Shiripour EZPlayer allows Stored XSS.This issue affects EZPlayer: from n/a through 1.0.10.\n\ud83d\udccf Published: 2025-01-16T20:08:07.340Z\n\ud83d\udccf Modified: 2025-01-17T20:27:48.116Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/ezplayer/vulnerability/wordpress-ezplayer-plugin-1-0-10-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-17T20:57:49.000000Z"}, {"uuid": "1aa66e70-b320-40f3-ba9e-993e9d1188f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23951", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2231", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23951\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DivEngine Gallery: Hybrid \u2013 Advanced Visual Gallery allows Stored XSS.This issue affects Gallery: Hybrid \u2013 Advanced Visual Gallery: from n/a through 1.4.0.2.\n\ud83d\udccf Published: 2025-01-16T20:08:04.780Z\n\ud83d\udccf Modified: 2025-01-17T21:05:09.702Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/hybrid-gallery/vulnerability/wordpress-gallery-hybrid-advanced-visual-gallery-plugin-1-4-0-2-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-17T21:57:10.000000Z"}, {"uuid": "977f2f22-1b21-4132-89d5-c8d9750c28f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2395", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-12T13:33:28.000000Z"}, {"uuid": "f3554e5b-db7a-4c0b-81c1-e972765961a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23951", "type": "seen", "source": "https://t.me/cvedetector/15647", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23951 - DivEngine Gallery: Stored Cross-site Scripting\", \n  \"Content\": \"CVE ID : CVE-2025-23951 \nPublished : Jan. 16, 2025, 9:15 p.m. | 39\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in DivEngine Gallery: Hybrid \u2013 Advanced Visual Gallery allows Stored XSS.This issue affects Gallery: Hybrid \u2013 Advanced Visual Gallery: from n/a through 1.4.0.2. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-16T22:56:14.000000Z"}, {"uuid": "2951a6b4-3c32-4921-ba59-9616bc48c191", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23957", "type": "seen", "source": "https://t.me/cvedetector/15640", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23957 - Sur.ly Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23957 \nPublished : Jan. 16, 2025, 9:15 p.m. | 39\u00a0minutes ago \nDescription : Missing Authorization vulnerability in Sur.ly Sur.ly allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sur.ly: from n/a through 3.0.3. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-16T22:56:02.000000Z"}, {"uuid": "9acec7ee-4c2f-4d21-82b6-b2f47a27bbee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23955", "type": "seen", "source": "https://t.me/cvedetector/15639", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23955 - Xola Missing Authorization Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23955 \nPublished : Jan. 16, 2025, 9:15 p.m. | 39\u00a0minutes ago \nDescription : Missing Authorization vulnerability in xola.com Xola allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Xola: from n/a through 1.6. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-16T22:56:01.000000Z"}, {"uuid": "f67c9d6b-e630-4454-b6ba-7127a60acd13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23954", "type": "seen", "source": "https://t.me/cvedetector/15638", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23954 - AWcode KingfisherFox Salvador AI Image Generator Missing Authorization\", \n  \"Content\": \"CVE ID : CVE-2025-23954 \nPublished : Jan. 16, 2025, 9:15 p.m. | 39\u00a0minutes ago \nDescription : Missing Authorization vulnerability in AWcode &amp; KingfisherFox Salvador \u2013 AI Image Generator allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Salvador \u2013 AI Image Generator: from n/a through 1.0.11. \nSeverity: 4.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-16T22:56:01.000000Z"}, {"uuid": "d9e9d2ab-6703-4eba-931f-2aa618fd8edb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23950", "type": "seen", "source": "https://t.me/cvedetector/15646", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23950 - EZPlayer Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23950 \nPublished : Jan. 16, 2025, 9:15 p.m. | 39\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Said Shiripour EZPlayer allows Stored XSS.This issue affects EZPlayer: from n/a through 1.0.10. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"16 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-16T22:56:13.000000Z"}, {"uuid": "1a91e9ec-a1ae-4ed4-aa7c-0169298ebcaf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23959", "type": "seen", "source": "https://t.me/cvedetector/16099", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23959 - Good Old Gallery Cross-site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23959 \nPublished : Jan. 22, 2025, 3:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Linus Lundahl Good Old Gallery allows Reflected XSS. This issue affects Good Old Gallery: from n/a through 2.1.2. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-22T17:13:35.000000Z"}, {"uuid": "8178013d-02e2-472a-8658-8449cdfb8ed0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23953", "type": "seen", "source": "https://t.me/cvedetector/16098", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23953 - Innovative Solutions Web Server Unrestricted File Upload Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-23953 \nPublished : Jan. 22, 2025, 3:15 p.m. | 44\u00a0minutes ago \nDescription : Unrestricted Upload of File with Dangerous Type vulnerability in Innovative Solutions user files allows Upload a Web Shell to a Web Server. This issue affects user files: from n/a through 2.4.2. \nSeverity: 10.0 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-22T17:13:34.000000Z"}, {"uuid": "97d538c4-71e6-416c-984e-b1cedd9ca581", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23953", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lgg3aqazbt2n", "content": "", "creation_timestamp": "2025-01-23T14:19:49.523402Z"}, {"uuid": "f644a904-c58e-4256-8496-a8b3f96007a8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2395", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/114177998430894049", "content": "", "creation_timestamp": "2025-03-17T13:26:34.074364Z"}, {"uuid": "f75d9af1-c336-4a8c-b4bd-97f4ce92efe8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2395", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lknjbdwjp72p", "content": "", "creation_timestamp": "2025-03-18T11:00:05.644591Z"}, {"uuid": "3c1f8422-1a5c-4931-ba51-00f3eb1a2b48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23957", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2181", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23957\n\ud83d\udd39 Description: Missing Authorization vulnerability in Sur.ly Sur.ly allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Sur.ly: from n/a through 3.0.3.\n\ud83d\udccf Published: 2025-01-16T20:08:12.474Z\n\ud83d\udccf Modified: 2025-01-17T17:38:30.532Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/surly/vulnerability/wordpress-sur-ly-plugin-3-0-3-broken-access-control-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-17T17:57:16.000000Z"}, {"uuid": "c11e62a5-b5ef-44f6-805c-460601e364f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23955", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2214", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23955\n\ud83d\udd39 Description: Missing Authorization vulnerability in xola.com Xola allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Xola: from n/a through 1.6.\n\ud83d\udccf Published: 2025-01-16T20:08:10.639Z\n\ud83d\udccf Modified: 2025-01-17T20:07:53.699Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/xola-bookings-for-tours-activities/vulnerability/wordpress-xola-plugin-1-6-broken-access-control-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-17T20:58:03.000000Z"}, {"uuid": "a9e427db-56fc-42c1-a088-e5c441fab931", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23953", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2565", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23953\n\ud83d\udd39 Description: Unrestricted Upload of File with Dangerous Type vulnerability in Innovative Solutions user files allows Upload a Web Shell to a Web Server. This issue affects user files: from n/a through 2.4.2.\n\ud83d\udccf Published: 2025-01-22T14:29:24.868Z\n\ud83d\udccf Modified: 2025-01-22T15:23:43.849Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/user-files/vulnerability/wordpress-user-files-plugin-2-4-2-arbitrary-file-upload-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-22T16:01:52.000000Z"}, {"uuid": "8e147c00-254f-4695-a70f-951a299f580f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2395", "type": "seen", "source": "https://t.me/cvedetector/20440", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2395 - e-Excellence U-Office Force Improper Authentication Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2395 \nPublished : March 17, 2025, 6:15 a.m. | 1\u00a0hour, 16\u00a0minutes ago \nDescription : The U-Office Force from e-Excellence has an Improper Authentication vulnerability, allowing unauthenticated remote attackers to use a particular API and alter cookies to log in as an administrator. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-17T09:06:12.000000Z"}, {"uuid": "bcd4fe1f-7543-4a6b-b0e6-32506fb8bad5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2395", "type": "seen", "source": "Telegram/q1CDtHQhektK3nhn8ZC9Wm2qKNcq5HBzhGFEOdcD8Vf_lUo", "content": "", "creation_timestamp": "2025-03-17T08:00:53.000000Z"}]}