{"vulnerability": "cve-2025-23509", "sightings": [{"uuid": "7c9e4e74-169d-4a73-8bbc-165336a5e732", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23509", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/2627", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23509\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound HyperComments allows Reflected XSS. This issue affects HyperComments: from n/a through 0.9.6.\n\ud83d\udccf Published: 2025-01-22T14:29:13.982Z\n\ud83d\udccf Modified: 2025-01-22T19:53:56.041Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/comments-with-hypercommentscom/vulnerability/wordpress-hypercomments-plugin-0-9-6-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-22T20:01:50.000000Z"}, {"uuid": "5ae20cdd-7ea4-4d0a-af5e-43762b90aff0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23509", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgdo2yjrie2r", "content": "", "creation_timestamp": "2025-01-22T15:18:37.000764Z"}]}