{"vulnerability": "CVE-2025-4645", "sightings": [{"uuid": "8a1914b0-900a-402a-8639-a6eca5c84547", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4645", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3m5dlw3ivic2h", "content": "", "creation_timestamp": "2025-11-11T07:19:33.362014Z"}, {"uuid": "65f823da-6b72-485b-ad50-8e8feae7fed9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4645", "type": "seen", "source": "https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m5dmj7iym762", "content": "", "creation_timestamp": "2025-11-11T07:30:26.706123Z"}, {"uuid": "56cc8baf-6172-4de1-9382-26da22747dda", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4645", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m5dv33euzc2k", "content": "", "creation_timestamp": "2025-11-11T10:03:23.630591Z"}, {"uuid": "ecb59d58-26df-4103-9549-df43d74dc105", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-46453", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/15870", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-46453\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in CreatorTeam Zoho Creator Forms allows Stored XSS. This issue affects Zoho Creator Forms: from n/a through 1.0.5.\n\ud83d\udccf Published: 2025-04-24T16:09:06.761Z\n\ud83d\udccf Modified: 2025-05-10T02:55:25.315Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/zohocreator/vulnerability/wordpress-zoho-creator-forms-1-0-5-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-05-10T03:25:57.000000Z"}, {"uuid": "6e30a986-09c6-494c-a60c-1e537300a44b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-46454", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17396", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-46454\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in svil4ok Meta Keywords & Description allows PHP Local File Inclusion. This issue affects Meta Keywords & Description: from n/a through 0.8.\n\ud83d\udccf Published: 2025-05-23T12:43:46.472Z\n\ud83d\udccf Modified: 2025-05-23T13:43:39.013Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/wp-meta-keywords-meta-description/vulnerability/wordpress-meta-keywords-description-0-8-local-file-inclusion-vulnerability?_s_id=cve", "creation_timestamp": "2025-05-23T14:46:58.000000Z"}, {"uuid": "eb64d673-dff7-4f85-90ea-3b8488a7ef99", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-46455", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17395", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-46455\n\ud83d\udd25 CVSS Score: 9.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in IndigoThemes WP HRM LITE allows SQL Injection. This issue affects WP HRM LITE: from n/a through 1.1.\n\ud83d\udccf Published: 2025-05-23T12:43:46.010Z\n\ud83d\udccf Modified: 2025-05-23T13:43:55.889Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/wp-hrm-lite-human-resource-management-system/vulnerability/wordpress-wp-hrm-lite-1-1-sql-injection-vulnerability?_s_id=cve", "creation_timestamp": "2025-05-23T14:46:57.000000Z"}]}