{"vulnerability": "cve-2025-2078", "sightings": [{"uuid": "2b9ff1e1-e030-4b39-bf71-34c01b3a94c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20782", "type": "seen", "source": "Telegram/DnjG3cjOf3mgRqCDQktUB9ySFlLQqpKZbunf1nrr4pA4vR8", "content": "", "creation_timestamp": "2026-01-06T15:03:37.000000Z"}, {"uuid": "580eb7ea-4532-464f-8158-adcc39ac55e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20781", "type": "seen", "source": "Telegram/jBZlDbE9sXNOGZiNfLnczb_uckfSwrbzvFqPwUO0qENjWP0", "content": "", "creation_timestamp": "2026-01-06T20:12:52.000000Z"}, {"uuid": "7062a99f-9086-445f-b3f6-522fdaa680bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20780", "type": "seen", "source": "Telegram/jBZlDbE9sXNOGZiNfLnczb_uckfSwrbzvFqPwUO0qENjWP0", "content": "", "creation_timestamp": "2026-01-06T20:12:52.000000Z"}, {"uuid": "259d4d87-0f82-4fbe-9d85-da3c9d49ccc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2078", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7262", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2078\n\ud83d\udd25 CVSS Score: 4.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: The BlogBuzzTime for WP plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level permissions and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page. This only affects multi-site installations and installations where unfiltered_html has been disabled.\n\ud83d\udccf Published: 2025-03-12T03:21:28.175Z\n\ud83d\udccf Modified: 2025-03-12T03:21:28.175Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/746e47f2-3fe3-439c-bd54-a9bba9c86271?source=cve\n2. https://wordpress.org/plugins/blogbuzztime-for-wp/", "creation_timestamp": "2025-03-12T03:44:27.000000Z"}, {"uuid": "7fa78a63-469c-41e0-acfa-e238090d0fb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20785", "type": "seen", "source": "Telegram/DnjG3cjOf3mgRqCDQktUB9ySFlLQqpKZbunf1nrr4pA4vR8", "content": "", "creation_timestamp": "2026-01-06T15:03:37.000000Z"}, {"uuid": "0f96803f-577d-4213-8084-8dbdd1354839", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20784", "type": "seen", "source": "Telegram/DnjG3cjOf3mgRqCDQktUB9ySFlLQqpKZbunf1nrr4pA4vR8", "content": "", "creation_timestamp": "2026-01-06T15:03:37.000000Z"}, {"uuid": "066b6d92-f166-4b55-a2bb-66b1cf4641ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20785", "type": "seen", "source": "Telegram/IzmJVDHIDu3u0Y8EmT2xTZPye35xj5uskV49q_8qxz_RHd0", "content": "", "creation_timestamp": "2026-01-06T15:03:59.000000Z"}, {"uuid": "b611a581-1f5a-4060-81dd-af4ad3170553", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20787", "type": "seen", "source": "Telegram/IzmJVDHIDu3u0Y8EmT2xTZPye35xj5uskV49q_8qxz_RHd0", "content": "", "creation_timestamp": "2026-01-06T15:03:59.000000Z"}, {"uuid": "fab15e26-ddb6-4d9f-87e2-8f2e460329ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20780", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mbs3pocnya2u", "content": "", "creation_timestamp": "2026-01-06T23:20:20.653024Z"}, {"uuid": "e499df70-88a5-44f3-86d2-b153fc073b17", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20781", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mbs7lzsnwu2f", "content": "", "creation_timestamp": "2026-01-07T00:29:53.605401Z"}, {"uuid": "b9de60d3-0181-4099-885f-2875a89ab14d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20781", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mbs7nsllep2b", "content": "", "creation_timestamp": "2026-01-07T00:30:53.528237Z"}, {"uuid": "1a576bd7-4f92-4b6a-93b6-4ae913402c0d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20783", "type": "seen", "source": "Telegram/DnjG3cjOf3mgRqCDQktUB9ySFlLQqpKZbunf1nrr4pA4vR8", "content": "", "creation_timestamp": "2026-01-06T15:03:37.000000Z"}, {"uuid": "bc7f2bea-7c3f-443f-b3a4-10da24c4941c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-20786", "type": "seen", "source": "Telegram/IzmJVDHIDu3u0Y8EmT2xTZPye35xj5uskV49q_8qxz_RHd0", "content": "", "creation_timestamp": "2026-01-06T15:03:59.000000Z"}]}