{"vulnerability": "CVE-2025-31561", "sightings": [{"uuid": "e7d345eb-7cde-47bb-b08b-20d61dff87ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31561", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10091", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-31561\n\ud83d\udd25 CVSS Score: 8.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in M. Tuhin Ultimate Push Notifications allows SQL Injection. This issue affects Ultimate Push Notifications: from n/a through 1.1.8.\n\ud83d\udccf Published: 2025-04-01T20:58:13.000Z\n\ud83d\udccf Modified: 2025-04-02T14:20:44.170Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/ultimate-push-notifications/vulnerability/wordpress-ultimate-push-notifications-plugin-1-1-8-sql-injection-vulnerability?_s_id=cve", "creation_timestamp": "2025-04-02T14:34:12.000000Z"}, {"uuid": "63f79b80-c7c7-42fc-bb6b-073b4cb7a609", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31561", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llrxuesacn23", "content": "", "creation_timestamp": "2025-04-01T22:57:09.697415Z"}, {"uuid": "9b8810c3-be79-4f5c-83cd-92e2e52a7849", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31561", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114265379364017192", "content": "", "creation_timestamp": "2025-04-01T23:48:42.553208Z"}, {"uuid": "2c5ccd8b-23d4-4fd5-bb49-e883e6903052", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31561", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114265379364017192", "content": "", "creation_timestamp": "2025-04-01T23:48:42.551959Z"}, {"uuid": "db6f4dd3-7dc1-4490-a393-de45df77f272", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31561", "type": "seen", "source": "https://t.me/cvedetector/21814", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-31561 - M. Tuhin Ultimate Push Notifications SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2025-31561 \nPublished : April 1, 2025, 9:15 p.m. | 27\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in M. Tuhin Ultimate Push Notifications allows SQL Injection. This issue affects Ultimate Push Notifications: from n/a through 1.1.8. \nSeverity: 8.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-01T23:56:10.000000Z"}]}