{"vulnerability": "cve-2025-31481", "sightings": [{"uuid": "559e49c8-6eb5-452c-99d7-f928b99363ce", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31481", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10335", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-31481\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)\n\ud83d\udd39 Description: API Platform Core is a system to create hypermedia-driven REST and GraphQL APIs. Using the Relay special node type you can bypass the configured security on an operation. This vulnerability is fixed in 4.0.22.\n\ud83d\udccf Published: 2025-04-03T19:20:22.916Z\n\ud83d\udccf Modified: 2025-04-03T19:20:22.916Z\n\ud83d\udd17 References:\n1. https://github.com/api-platform/core/security/advisories/GHSA-cg3c-245w-728m\n2. https://github.com/api-platform/core/commit/60747cc8c2fb855798c923b5537888f8d0969568", "creation_timestamp": "2025-04-03T19:35:46.000000Z"}, {"uuid": "aa8eb3ed-ffdc-4f43-a12c-530300cebe8c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31481", "type": "seen", "source": "https://t.me/cvedetector/22019", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-31481 - API Platform Core Relay Security Bypass\", \n  \"Content\": \"CVE ID : CVE-2025-31481 \nPublished : April 3, 2025, 8:15 p.m. | 1\u00a0hour ago \nDescription : API Platform Core is a system to create hypermedia-driven REST and GraphQL APIs. Using the Relay special node type you can bypass the configured security on an operation. This vulnerability is fixed in 4.0.22. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"03 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-03T23:36:16.000000Z"}, {"uuid": "0a256ac7-bfba-4f2f-b579-70c75df994ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31481", "type": "seen", "source": "https://gist.github.com/alon710/6d07eaa50a9c65dee03f6d48a556821e", "content": "", "creation_timestamp": "2026-01-24T22:41:05.000000Z"}, {"uuid": "dee74ea4-58ff-4889-8289-b3ea72fa7422", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31481", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llwsmfsvb62k", "content": "", "creation_timestamp": "2025-04-03T21:06:37.219462Z"}, {"uuid": "4c860121-1515-4b00-800b-c8233f6e0e8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-31481", "type": "seen", "source": "https://gist.github.com/alon710/d62b8d758aabba574401fb9e79bd74ca", "content": "", "creation_timestamp": "2026-01-24T21:25:40.000000Z"}]}