{"vulnerability": "cve-2025-4291", "sightings": [{"uuid": "ad8387ad-b0ad-4b25-954e-98bfec60913b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42917", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/43ff9e04-da8f-45fe-a06a-e8f9b84a2d14", "content": "", "creation_timestamp": "2025-09-11T13:37:23.512990Z"}, {"uuid": "94fe8e36-b008-4bf3-a2ba-2cc664f18edd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42915", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/43ff9e04-da8f-45fe-a06a-e8f9b84a2d14", "content": "", "creation_timestamp": "2025-09-11T13:37:23.512990Z"}, {"uuid": "99f539ee-ce17-42c2-8ea7-e62ce1c4c47b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42918", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/43ff9e04-da8f-45fe-a06a-e8f9b84a2d14", "content": "", "creation_timestamp": "2025-09-11T13:37:23.512990Z"}, {"uuid": "b34c8ce7-c973-4eae-a90e-75c1230ee58a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42916", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/43ff9e04-da8f-45fe-a06a-e8f9b84a2d14", "content": "", "creation_timestamp": "2025-09-11T13:37:23.512990Z"}, {"uuid": "3619aed3-4fed-47df-8a22-2c136765b6d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42913", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/43ff9e04-da8f-45fe-a06a-e8f9b84a2d14", "content": "", "creation_timestamp": "2025-09-11T13:37:23.512990Z"}, {"uuid": "5c1ceccf-7753-4950-86c3-21ebdf5f8d98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42911", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/43ff9e04-da8f-45fe-a06a-e8f9b84a2d14", "content": "", "creation_timestamp": "2025-09-11T13:37:23.512990Z"}, {"uuid": "5bb39296-1315-452f-9aef-55ae3911db1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42912", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/43ff9e04-da8f-45fe-a06a-e8f9b84a2d14", "content": "", "creation_timestamp": "2025-09-11T13:37:23.512990Z"}, {"uuid": "31bc9f0b-5e61-4e92-b9fc-df94873c1f33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42914", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/43ff9e04-da8f-45fe-a06a-e8f9b84a2d14", "content": "", "creation_timestamp": "2025-09-11T13:37:23.512990Z"}, {"uuid": "3188e4be-773a-457d-89e2-c5378d35a38b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4291", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15005", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-4291\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability, which was classified as critical, was found in IdeaCMS up to 1.6. Affected is the function saveUpload. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-05-05T22:00:11.189Z\n\ud83d\udccf Modified: 2025-05-05T22:00:11.189Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.307398\n2. https://vuldb.com/?ctiid.307398\n3. https://vuldb.com/?submit.563522\n4. https://gitee.com/ideacms/ideacms/issues/IC32SB", "creation_timestamp": "2025-05-05T22:19:42.000000Z"}, {"uuid": "74857b62-9e2a-47c2-8fd5-cbd3f4471d77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42917", "type": "seen", "source": "https://gist.github.com/Darkcrai86/e18874fc8fd9356b20c3d1d6b21a0463", "content": "", "creation_timestamp": "2025-09-09T10:09:39.000000Z"}, {"uuid": "a3126ff6-adad-4c43-813c-bed4d29e30ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42913", "type": "seen", "source": "https://gist.github.com/Darkcrai86/91999266aa6aad667a79961389770df2", "content": "", "creation_timestamp": "2025-09-09T10:10:32.000000Z"}, {"uuid": "3e71b2d5-4ba5-4d5e-8291-c608f01108f2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42916", "type": "seen", "source": "https://gist.github.com/Darkcrai86/d1751c1a5f13962edc1c5eb0b7e02b4c", "content": "", "creation_timestamp": "2025-09-09T10:09:56.000000Z"}, {"uuid": "071081c5-d80f-4a5e-ba41-382a3a89b015", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42912", "type": "seen", "source": "https://gist.github.com/Darkcrai86/5475f0758ea5bcf1bb388111f1ffbee4", "content": "", "creation_timestamp": "2025-09-09T10:10:51.000000Z"}, {"uuid": "6c77759b-f801-4877-a606-02a1cb3913f6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42914", "type": "seen", "source": "https://gist.github.com/Darkcrai86/1e12270eb9fc7037e9e31a215d42cbf6", "content": "", "creation_timestamp": "2025-09-09T10:10:18.000000Z"}, {"uuid": "b59d3ffe-08de-43b1-82a8-a181d674646f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42919", "type": "seen", "source": "https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m5dajq5cyba2", "content": "", "creation_timestamp": "2025-11-11T03:55:50.941767Z"}, {"uuid": "7d6631f8-9a57-4453-b26e-0b832ae2cbb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42910", "type": "seen", "source": "https://bsky.app/profile/eyalestrin.bsky.social/post/3m3ad7zctos2w", "content": "", "creation_timestamp": "2025-10-15T13:15:39.485638Z"}, {"uuid": "80963fb6-3c43-44a4-a41a-e4b0a30aa609", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4291", "type": "seen", "source": "https://t.me/cvedetector/24522", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-4291 - IdeaCMS Unrestricted File Upload Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-4291 \nPublished : May 5, 2025, 10:15 p.m. | 1\u00a0hour, 26\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, was found in IdeaCMS up to 1.6. Affected is the function saveUpload. The manipulation leads to unrestricted upload. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"06 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-06T01:55:48.000000Z"}, {"uuid": "676e2d88-3c75-415b-8e6f-521019bc7fb0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-4291", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lohmhbdrwe2j", "content": "", "creation_timestamp": "2025-05-06T00:22:01.013395Z"}, {"uuid": "22544f24-55ac-4b1f-a33a-caff7eacb8b9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-42910", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3m34qn3mg7a2i", "content": "", "creation_timestamp": "2025-10-14T03:04:58.604473Z"}, {"uuid": "3c171fbb-15a6-4751-be5c-67e54388835a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42910", "type": "seen", "source": "https://gist.github.com/Darkcrai86/2dd7c440dbe98c8ac2b71ad1a3551a18", "content": "", "creation_timestamp": "2025-10-14T06:47:24.000000Z"}, {"uuid": "c7bedaa2-369d-4b77-9c2c-d0ccb69dfd39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42919", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m5d4tl6e562k", "content": "", "creation_timestamp": "2025-11-11T02:49:42.093193Z"}, {"uuid": "88e58407-06e5-417f-9c44-aae34225a0eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-42916", "type": "seen", "source": "https://gist.github.com/Darkcrai86/54187ddefd36dbe9ba5950ba44a4f632", "content": "", "creation_timestamp": "2025-09-09T06:47:31.000000Z"}]}