{"vulnerability": "CVE-2025-3311", "sightings": [{"uuid": "5d88cd6c-9c12-4b12-895c-da25b9707481", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3311", "type": "seen", "source": "https://t.me/cvedetector/22219", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-3311 - PHPGurukul Men Salon Management System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-3311 \nPublished : April 6, 2025, 7:15 a.m. | 2\u00a0hours, 13\u00a0minutes ago \nDescription : A vulnerability classified as critical was found in PHPGurukul Men Salon Management System 1.0. This vulnerability affects unknown code of the file /admin/about-us.php. The manipulation of the argument pagetitle leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 7.3 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-06T11:48:14.000000Z"}, {"uuid": "3adb669e-8a50-44db-a7a5-5387b7f0f6a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3311", "type": "published-proof-of-concept", "source": "Telegram/_cOa7k6srWq52nd1YflUDAhFMyZGYnjyZ5Mbc9NhhnabllQ", "content": "", "creation_timestamp": "2025-04-06T09:00:44.000000Z"}, {"uuid": "caae7588-039c-4dca-98bb-fa1087075616", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-33117", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrydbmm2cd2a", "content": "", "creation_timestamp": "2025-06-19T20:08:30.748904Z"}, {"uuid": "a6b3cfd0-9e3c-4450-8f58-8cce4b9f18d5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3311", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lm544kxwva2h", "content": "", "creation_timestamp": "2025-04-06T09:12:34.231361Z"}, {"uuid": "3555e23e-6b98-4ecc-b8d6-652358f71c4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-33112", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114660352507674436", "content": "", "creation_timestamp": "2025-06-10T17:55:33.536279Z"}, {"uuid": "f6af6f1f-00d3-4633-8978-ab4d7a18a02f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-33117", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lrz3iauwzk2y", "content": "", "creation_timestamp": "2025-06-20T03:21:43.894501Z"}, {"uuid": "3e6f159f-af9d-4b7c-a07d-fcc20433bcda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-33117", "type": "seen", "source": "Telegram/mV5RUt-ErcEv8IWl-QMPKS-gDP3S7xJltTWYiLhYR65BNak", "content": "", "creation_timestamp": "2025-06-19T18:02:29.000000Z"}, {"uuid": "17ed6934-fcc2-4d5b-8c05-c5ef03413f9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-33112", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrbmj765ps2o", "content": "", "creation_timestamp": "2025-06-10T19:22:34.727813Z"}, {"uuid": "ab4f4bbd-160f-425a-8583-5731fd8bfe33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-33116", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3m2mstfhlh22w", "content": "", "creation_timestamp": "2025-10-07T19:01:41.405842Z"}, {"uuid": "5cf27e0b-4a03-4931-9bf5-98bcb92eb416", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-33111", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7ja3m7jft2k", "content": "", "creation_timestamp": "2025-12-08T23:54:14.436631Z"}, {"uuid": "f7ceb438-d993-4b8b-a17d-fc79ff365f04", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-33117", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18872", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-33117\n\ud83d\udd25 CVSS Score: 9.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: IBM QRadar SIEM 7.5 through 7.5.0 Update Package 12  could allow a privileged user to modify configuration files that would allow the upload of a malicious autoupdate file to execute arbitrary commands.\n\ud83d\udccf Published: 2025-06-19T17:16:41.195Z\n\ud83d\udccf Modified: 2025-06-19T17:16:41.195Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7237317", "creation_timestamp": "2025-06-19T17:40:57.000000Z"}, {"uuid": "2eb7747d-a5b4-4074-85ea-4d0d84ba08f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-3311", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10627", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-3311\n\ud83d\udd25 CVSS Score: 6.9 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability classified as critical was found in PHPGurukul Men Salon Management System 1.0. This vulnerability affects unknown code of the file /admin/about-us.php. The manipulation of the argument pagetitle leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-04-06T06:31:05.755Z\n\ud83d\udccf Modified: 2025-04-06T06:31:05.755Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.303508\n2. https://vuldb.com/?ctiid.303508\n3. https://vuldb.com/?submit.550196\n4. https://github.com/FIGHTINGTMQ/CVE/issues/1\n5. https://phpgurukul.com/", "creation_timestamp": "2025-04-06T06:38:02.000000Z"}, {"uuid": "d3f464ce-6bf1-4d9e-9ad5-b14676810489", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-33112", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/17961", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-33112\n\ud83d\udd25 CVSS Score: 8.4 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: IBM AIX 7.3 and IBM VIOS 4.1.1 Perl implementation could allow a non-privileged local user to exploit a vulnerability to execute arbitrary code due to improper neutralization of pathname input.\n\ud83d\udccf Published: 2025-06-10T16:28:44.355Z\n\ud83d\udccf Modified: 2025-06-10T17:52:31.076Z\n\ud83d\udd17 References:\n1. https://www.ibm.com/support/pages/node/7236103", "creation_timestamp": "2025-06-10T18:33:15.000000Z"}]}