{"vulnerability": "cve-2025-2384", "sightings": [{"uuid": "0613b2f4-1efd-47d8-b67c-88a4a4eaee4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2384", "type": "seen", "source": "https://t.me/cvedetector/20499", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2384 - Real Estate Property Management System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2384 \nPublished : March 17, 2025, 4:15 p.m. | 1\u00a0hour, 41\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, was found in code-projects Real Estate Property Management System 1.0. This affects an unknown part of the file /InsertCustomer.php of the component Parameter Handler. The manipulation of the argument txtName/txtAddress/cmbCity/txtEmail/cmbGender/txtBirthDate/txtUserName2/txtPassword2 leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-17T19:08:53.000000Z"}, {"uuid": "c5de1991-bbc9-435e-8a54-4ef676eba90e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23846", "type": "seen", "source": "https://t.me/cvedetector/16111", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23846 - Kolja Nolte Flexible Blogtitle Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2025-23846 \nPublished : Jan. 22, 2025, 3:15 p.m. | 44\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Kolja Nolte Flexible Blogtitle allows Reflected XSS. This issue affects Flexible Blogtitle: from n/a through 0.1. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"22 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-22T17:13:51.000000Z"}, {"uuid": "527b9572-d8f6-4176-b7ed-5399a6e5b439", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23844", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7e5whko2t", "content": "", "creation_timestamp": "2025-01-16T21:18:02.249921Z"}, {"uuid": "d8b5d4aa-9069-44ba-a410-0f7f0c6a9803", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23848", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7eazvcr2b", "content": "", "creation_timestamp": "2025-01-16T21:18:05.483601Z"}, {"uuid": "4d79d3d6-2245-4c90-aea1-41cbd8d4d939", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2384", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-12T13:33:28.000000Z"}, {"uuid": "3d3fc39d-822e-4e36-bb24-787c75484540", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23845", "type": "seen", "source": "https://t.me/cvedetector/18248", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23845 - ERA404 ImageMeta Cross-site Scripting\", \n  \"Content\": \"CVE ID : CVE-2025-23845 \nPublished : Feb. 17, 2025, 12:15 p.m. | 30\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in ERA404 ImageMeta allows Reflected XSS. This issue affects ImageMeta: from n/a through 1.1.2. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-17T14:02:10.000000Z"}, {"uuid": "eddbd30b-60fb-4d81-b89a-0bcc746df7c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23840", "type": "seen", "source": "https://t.me/cvedetector/18256", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-23840 - Webjema WP-NOTCAPTCHA Cross-Site Scripting\", \n  \"Content\": \"CVE ID : CVE-2025-23840 \nPublished : Feb. 17, 2025, 12:15 p.m. | 30\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in webjema WP-NOTCAPTCHA allows Reflected XSS. This issue affects WP-NOTCAPTCHA: from n/a through 1.3.1. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-17T14:02:22.000000Z"}, {"uuid": "a3c85025-5f3c-46bd-bf5c-723cf1974f28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23841", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7dy6eud2r", "content": "", "creation_timestamp": "2025-01-16T21:17:56.335179Z"}, {"uuid": "c13f1030-2745-4cc0-8dde-6a9f3cf3d54c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23846", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgdo7hw2oo2r", "content": "", "creation_timestamp": "2025-01-22T15:21:07.335448Z"}, {"uuid": "1cdf0b7f-68b2-4aee-b243-2c11d54f0ef0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23840", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/114019047659122558", "content": "", "creation_timestamp": "2025-02-17T11:43:17.948348Z"}, {"uuid": "27a252ba-6b18-4537-bb5e-3432dde306fc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23845", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/114019047674107538", "content": "", "creation_timestamp": "2025-02-17T11:43:18.271361Z"}, {"uuid": "cd29db2d-fd78-4c3a-8ef6-7e0dbeb02587", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23840", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3liepxwhkxx2i", "content": "", "creation_timestamp": "2025-02-17T12:15:44.787815Z"}, {"uuid": "b914b091-b206-40a6-aac4-461180839d77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23845", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3liepxywjc72y", "content": "", "creation_timestamp": "2025-02-17T12:15:47.386747Z"}, {"uuid": "a4eedaf2-8c4c-4566-a04a-76bbe2b09d49", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23840", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3liezywcdh22v", "content": "", "creation_timestamp": "2025-02-17T15:15:16.013217Z"}, {"uuid": "35694268-aff8-46c4-b26a-0658e92d1799", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23845", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3liezywp2lu2e", "content": "", "creation_timestamp": "2025-02-17T15:15:18.165238Z"}, {"uuid": "a3698544-a0ed-489f-949b-639c2cc285a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-2384", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-21T03:19:31.000000Z"}, {"uuid": "89053247-9568-4132-8c24-518c9d865cc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23843", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/6413", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23843\n\ud83d\udd25 CVSS Score: 7.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wphrmanager WP-HR Manager: The Human Resources Plugin for WordPress allows Reflected XSS. This issue affects WP-HR Manager: The Human Resources Plugin for WordPress: from n/a through 3.1.0.\n\ud83d\udccf Published: 2025-03-03T13:30:19.486Z\n\ud83d\udccf Modified: 2025-03-04T20:18:41.355Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/wp-hr-manager/vulnerability/wordpress-wp-hr-manager-plugin-3-1-0-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-03-04T20:31:47.000000Z"}, {"uuid": "6691979e-cfb7-4e3f-9cee-76d5dc0f3915", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23842", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7e3bif52t", "content": "", "creation_timestamp": "2025-01-16T21:17:59.522324Z"}, {"uuid": "05b42485-5284-4441-89b2-ec4c14634b20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23849", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgqabkf4mt2c", "content": "", "creation_timestamp": "2025-01-27T15:16:21.343778Z"}, {"uuid": "5d148e63-baa5-4fdb-aa71-f1012418eb0f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-23847", "type": "seen", "source": "MISP/e1f6260f-3311-441b-92ae-e04cd5eb5f72", "content": "", "creation_timestamp": "2025-08-19T13:26:45.000000Z"}]}