{"vulnerability": "CVE-2025-4168", "sightings": [{"uuid": "0bfe341d-5259-44f6-b379-1cd61a9068dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4168", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3loafeladuj42", "content": "", "creation_timestamp": "2025-05-03T03:26:54.149985Z"}, {"uuid": "024e618b-cb33-4751-a3b4-a61a6392cac1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4168", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3loaob3wc662p", "content": "", "creation_timestamp": "2025-05-03T06:05:36.970804Z"}, {"uuid": "ef0e63c7-0515-47dc-8ab9-c1de2a11b503", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41688", "type": "seen", "source": "https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3lvaweni7v452", "content": "", "creation_timestamp": "2025-07-31T10:27:17.678176Z"}, {"uuid": "e2ce272c-2011-4a1d-b11d-877c26a09202", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41688", "type": "seen", "source": "https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3lvawsairchv2", "content": "", "creation_timestamp": "2025-07-31T10:34:42.668860Z"}, {"uuid": "d513bb57-1fe7-4b94-89f3-217752682ed6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41688", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lvbblgwchd2e", "content": "", "creation_timestamp": "2025-07-31T13:47:45.258999Z"}, {"uuid": "b09ec568-90ea-481a-be01-98bcd57cdf80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41686", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lw7b3jjcvy2s", "content": "", "creation_timestamp": "2025-08-12T11:58:43.429431Z"}, {"uuid": "432ce026-1e4f-4e01-93b3-e88fc096607e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41685", "type": "seen", "source": "https://infosec.exchange/users/certvde/statuses/115054415790248821", "content": "", "creation_timestamp": "2025-08-19T08:11:01.685777Z"}, {"uuid": "dab9a64d-86bf-4dd4-aca9-1db7b3f8e832", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41685", "type": "seen", "source": "https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3lwqhmwyihxm2", "content": "", "creation_timestamp": "2025-08-19T08:11:10.141749Z"}, {"uuid": "e1c63964-30cf-42a4-9d48-1aa704bf4c95", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41689", "type": "seen", "source": "https://infosec.exchange/users/certvde/statuses/115054417539925546", "content": "", "creation_timestamp": "2025-08-19T08:11:28.399302Z"}, {"uuid": "99eec3cc-70e1-48ea-926e-de9e3b328d85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41689", "type": "seen", "source": "https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3lwqhnquqj3g2", "content": "", "creation_timestamp": "2025-08-19T08:11:54.077196Z"}, {"uuid": "6d1bfe5f-6dfa-405f-a82d-94b9ef539af6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4168", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/14897", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-4168\n\ud83d\udd25 CVSS Score: 6.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: The Subpage List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'subpages' shortcode in all versions up to, and including, 1.3.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.\n\ud83d\udccf Published: 2025-05-03T01:43:06.141Z\n\ud83d\udccf Modified: 2025-05-05T14:58:09.080Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/aca48ddf-4256-4a55-bff5-1718110147dd?source=cve\n2. https://plugins.trac.wordpress.org/browser/subpage-view/trunk/inc/class-subpage-list-shortcode.php#L25", "creation_timestamp": "2025-05-05T15:20:25.000000Z"}, {"uuid": "a2d1bd30-8d0b-4b6c-80bc-3815d45b5bca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41682", "type": "seen", "source": "https://t.me/canyoupwnme/6962", "content": "CVE-2025-41682 - Credential Disclosure via Insecure Storage on Charge Controller\nhttps://cvefeed.io/vuln/detail/CVE-2025-41682", "creation_timestamp": "2025-09-08T15:53:16.000000Z"}, {"uuid": "91a7e340-a227-4e19-827b-1c29515dfd8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4168", "type": "seen", "source": "https://t.me/cvedetector/24388", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-4168 - WordPress Subpage List Stored Cross-Site Scripting\", \n  \"Content\": \"CVE ID : CVE-2025-4168 \nPublished : May 3, 2025, 3:15 a.m. | 27\u00a0minutes ago \nDescription : The Subpage List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'subpages' shortcode in all versions up to, and including, 1.3.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. \nSeverity: 6.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-03T06:10:19.000000Z"}, {"uuid": "22bfb896-ab14-40dd-899b-37c1a2d167ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41681", "type": "seen", "source": "https://infosec.exchange/users/certvde/statuses/114890803062994673", "content": "", "creation_timestamp": "2025-07-21T10:42:10.380191Z"}, {"uuid": "1f2a5096-8338-4b03-97cb-107b29ea5a2d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41681", "type": "seen", "source": "https://infosec.exchange/users/certvde/statuses/114890804388115598", "content": "", "creation_timestamp": "2025-07-21T10:42:30.692284Z"}, {"uuid": "5d4992f6-c8a4-4b2e-9aef-72baf7b3d159", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41683", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lumtgvt52i2i", "content": "", "creation_timestamp": "2025-07-23T10:41:26.174033Z"}, {"uuid": "5496bd93-0cde-4b64-911f-e85f08ef9380", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41684", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lumtpur6ys2j", "content": "", "creation_timestamp": "2025-07-23T10:46:27.138228Z"}, {"uuid": "81709d31-bf71-4f00-8d67-0ecd019c39a0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41687", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lumtyta7x32w", "content": "", "creation_timestamp": "2025-07-23T10:51:27.409957Z"}, {"uuid": "e45baedf-ce9b-4f00-bacb-7721a3f7bd8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41682", "type": "seen", "source": "https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3lycn4cbj5oi2", "content": "", "creation_timestamp": "2025-09-08T07:02:39.907868Z"}, {"uuid": "1679d3e2-adbe-4585-85e6-bde74be8f6d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41686", "type": "seen", "source": "https://infosec.exchange/users/certvde/statuses/115014864713304287", "content": "", "creation_timestamp": "2025-08-12T08:32:40.165290Z"}, {"uuid": "8e554b44-ad06-4259-8349-ca57913e8601", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41686", "type": "seen", "source": "https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3lw6vldqr7qy2", "content": "", "creation_timestamp": "2025-08-12T08:32:57.744840Z"}, {"uuid": "45d46cbb-ab69-4b7a-b52c-bf1ad7d8848c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41688", "type": "seen", "source": "https://bsky.app/profile/Linux-Maintainers.activitypub.awakari.com.ap.brid.gy/post/3lwomzvokon22", "content": "", "creation_timestamp": "2025-08-18T14:43:08.510624Z"}, {"uuid": "e59704d6-bdd7-4f9b-9e4b-8826b6a523c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41685", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lwqoseg3u52c", "content": "", "creation_timestamp": "2025-08-19T10:19:23.813291Z"}, {"uuid": "9690e61c-5fa5-4611-87d6-4314f9afff7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41689", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lwqp3d3ne22a", "content": "", "creation_timestamp": "2025-08-19T10:24:24.433488Z"}, {"uuid": "8295d2ff-33c9-4995-a74e-1df827a013a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41681", "type": "seen", "source": "https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3luhskh5jvhb2", "content": "", "creation_timestamp": "2025-07-21T10:46:29.159170Z"}, {"uuid": "835e44f7-5518-4d19-9957-3f822a91cc27", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41681", "type": "seen", "source": "https://bsky.app/profile/certvde.infosec.exchange.ap.brid.gy/post/3luhsl2iw3jv2", "content": "", "creation_timestamp": "2025-07-21T10:46:31.246236Z"}, {"uuid": "febb38af-6e92-46d5-a80c-b71a09a777c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41682", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lycutxbhvu2d", "content": "", "creation_timestamp": "2025-09-08T09:20:46.562021Z"}, {"uuid": "bc6c109d-7fd4-4fd8-8524-27c0e76902d9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-41683", "type": "seen", "source": "MISP/2bceffac-02c3-4c54-a709-6e253b38ec76", "content": "", "creation_timestamp": "2025-09-09T20:56:42.000000Z"}]}