{"vulnerability": "cve-2025-4386", "sightings": [{"uuid": "e0d0ad89-2b85-4e19-8d82-39d65710d49d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-43864", "type": "seen", "source": "https://bsky.app/profile/azu.bsky.social/post/3lntci6c7zj2l", "content": "", "creation_timestamp": "2025-04-27T22:30:12.004455Z"}, {"uuid": "d3ee1955-59c4-47d0-bf78-87e2fb06a12d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43864", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lntma2tzys2b", "content": "", "creation_timestamp": "2025-04-28T01:24:37.950893Z"}, {"uuid": "53de9e8d-c0a1-4e80-a53e-d070781dc9be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43865", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lntma2tzys2b", "content": "", "creation_timestamp": "2025-04-28T01:24:38.069811Z"}, {"uuid": "4636dabb-9e0e-4ec3-bd53-756ef5d020f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-43864", "type": "seen", "source": "https://bsky.app/profile/rss.y-u-e.workers.dev/post/3lnufojekvu27", "content": "", "creation_timestamp": "2025-04-28T09:00:06.547211Z"}, {"uuid": "8d73468c-c6cd-4ada-b856-731d11a76bef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-43864", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3lnuiqywno22r", "content": "", "creation_timestamp": "2025-04-28T09:55:10.362830Z"}, {"uuid": "dca66886-cb27-4709-a9cb-c99b7f61996c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-43865", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3lnuiqywno22r", "content": "", "creation_timestamp": "2025-04-28T09:55:10.430202Z"}, {"uuid": "34ec7f5c-9d79-40bf-9174-ee2ca4b4590a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43864", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mckha7mnad2z", "content": "", "creation_timestamp": "2026-01-16T15:50:19.817365Z"}, {"uuid": "5c873855-0297-4511-b93a-8c8b0d98c793", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43865", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mckha7mnad2z", "content": "", "creation_timestamp": "2026-01-16T15:50:19.907135Z"}, {"uuid": "251bf25c-412e-49ef-856e-5f378fa2734d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43861", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13346", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-43861\n\ud83d\udd25 CVSS Score: 4.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: ManageWiki is a MediaWiki extension allowing users to manage wikis. Prior to commit 2f177dc, ManageWiki is vulnerable to reflected or stored XSS in the review dialog. A logged-in attacker must change a form field to include a malicious payload. If that same user then opens the \"Review Changes\" dialog, the payload will be rendered and executed in the context of their own session. This issue has been patched in commit 2f177dc.\n\ud83d\udccf Published: 2025-04-24T20:49:57.692Z\n\ud83d\udccf Modified: 2025-04-24T20:49:57.692Z\n\ud83d\udd17 References:\n1. https://github.com/miraheze/ManageWiki/security/advisories/GHSA-859x-46h8-vcrv\n2. https://github.com/miraheze/ManageWiki/commit/2f177dc83b28b727613215b835d4036cb179e4ab", "creation_timestamp": "2025-04-24T21:07:11.000000Z"}, {"uuid": "07dbf284-c08c-497f-bcdf-86f125843700", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43864", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13367", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-43864\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)\n\ud83d\udd39 Description: React Router is a router for React. Starting in version 7.2.0 and prior to version 7.5.2, it is possible to force an application to switch to SPA mode by adding a header to the request. If the application uses SSR and is forced to switch to SPA, this causes an error that completely corrupts the page. If a cache system is in place, this allows the response containing the error to be cached, resulting in a cache poisoning that strongly impacts the availability of the application. This issue has been patched in version 7.5.2.\n\ud83d\udccf Published: 2025-04-25T00:18:16.058Z\n\ud83d\udccf Modified: 2025-04-25T00:18:16.058Z\n\ud83d\udd17 References:\n1. https://github.com/remix-run/react-router/security/advisories/GHSA-f46r-rw29-r322\n2. https://github.com/remix-run/react-router/commit/c84302972a152d851cf5dd859ff332b354b70111\n3. https://github.com/remix-run/react-router/blob/e6c53a0130559b4a9bd47f9cf76ea5b08a69868a/packages/react-router/lib/server-runtime/server.ts#L407", "creation_timestamp": "2025-04-25T01:10:56.000000Z"}, {"uuid": "ffb3ab65-e037-4cda-8d9c-a2ab291ccd77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43866", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18299", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-43866\n\ud83d\udd25 CVSS Score: 1.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U)\n\ud83d\udd39 Description: vantage6 is an open-source infrastructure for privacy preserving analysis. The JWT secret key in the vantage6 server is auto-generated unless defined by the user. The auto-generated key is a UUID1, which is not cryptographically secure as it is predictable to some extent. This vulnerability is fixed in 4.11.0.\n\ud83d\udccf Published: 2025-06-12T18:04:57.649Z\n\ud83d\udccf Modified: 2025-06-13T14:06:06.347Z\n\ud83d\udd17 References:\n1. https://github.com/vantage6/vantage6/security/advisories/GHSA-m3mq-f375-5vgh", "creation_timestamp": "2025-06-13T14:35:48.000000Z"}, {"uuid": "45c52977-bfef-4ed2-8688-d221c8ab3de9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43861", "type": "seen", "source": "https://t.me/cvedetector/23706", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-43861 - ManageWiki Stored and Reflected XSS Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-43861 \nPublished : April 24, 2025, 9:15 p.m. | 1\u00a0hour, 20\u00a0minutes ago \nDescription : ManageWiki is a MediaWiki extension allowing users to manage wikis. Prior to commit 2f177dc, ManageWiki is vulnerable to reflected or stored XSS in the review dialog. A logged-in attacker must change a form field to include a malicious payload. If that same user then opens the \"Review Changes\" dialog, the payload will be rendered and executed in the context of their own session. This issue has been patched in commit 2f177dc. \nSeverity: 4.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-25T00:47:40.000000Z"}, {"uuid": "c0a8d381-f4f7-44ec-99f1-91c691177171", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43862", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnnq76yi6e2h", "content": "", "creation_timestamp": "2025-04-25T17:19:51.138244Z"}, {"uuid": "45a647b4-828e-4ecf-a496-1fc14d2e27e2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43862", "type": "seen", "source": "https://bsky.app/profile/LLMs.activitypub.awakari.com.ap.brid.gy/post/3lno6awktfj62", "content": "", "creation_timestamp": "2025-04-25T21:36:03.504009Z"}, {"uuid": "54794b6b-aba6-4fb8-9163-01455ad049c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43865", "type": "seen", "source": "https://bsky.app/profile/azu.bsky.social/post/3lnozraetzy2h", "content": "", "creation_timestamp": "2025-04-26T05:43:33.515558Z"}, {"uuid": "7f2302dd-bb23-417c-a4b8-af9eb71efefb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43860", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lpurwbdv6bj2", "content": "", "creation_timestamp": "2025-05-23T23:29:56.231015Z"}, {"uuid": "e4f85005-74f8-490a-ac60-e6f5cfc52996", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43864", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3madzvrat662z", "content": "", "creation_timestamp": "2025-12-19T15:45:28.948428Z"}, {"uuid": "fbde3971-1208-4df8-aaf7-7e676556353d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43865", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3madzvrat662z", "content": "", "creation_timestamp": "2025-12-19T15:45:29.028342Z"}, {"uuid": "379cc01b-b764-4476-86ee-a20fde362822", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43860", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17411", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-43860\n\ud83d\udd25 CVSS Score: 7.6 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:L/A:N)\n\ud83d\udd39 Description: OpenEMR is a free and open source electronic health records and medical practice management application. A stored cross-site scripting (XSS) vulnerability in versions prior to 7.0.3.4 allows any authenticated user with patient creation and editing privileges to inject arbitrary JavaScript code into the system by entering malicious payloads in the (1) Text Box fields of Address, Address Line 2, Postal Code and City fields  and (2) Drop Down menu options of Address Use, State and Country of the Additional Addresses section of the Contact tab in Patient Demographics. The injected script can execute in two scenarios: (1) dynamically during form input, and (2) when the form data is later loaded for editing. Version 7.0.3.4 contains a patch for the issue.\n\ud83d\udccf Published: 2025-05-23T15:35:01.087Z\n\ud83d\udccf Modified: 2025-05-23T15:35:01.087Z\n\ud83d\udd17 References:\n1. https://github.com/openemr/openemr/security/advisories/GHSA-2h9p-7vmc-wmqv", "creation_timestamp": "2025-05-23T15:44:49.000000Z"}, {"uuid": "504e8609-1f48-4685-ae6a-f92dc5f268e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43863", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18200", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-43863\n\ud83d\udd25 CVSS Score: 1.7 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:U)\n\ud83d\udd39 Description: vantage6 is an open source framework built to enable, manage and deploy privacy enhancing technologies like Federated Learning and Multi-Party Computation. If attacker gets access to an authenticated session, they can try to brute-force the user password by using the change password functionality: they can call that route infinitely which will return the message that password is wrong until it is correct. This vulnerability is fixed in 4.11.\n\ud83d\udccf Published: 2025-06-12T17:29:57.047Z\n\ud83d\udccf Modified: 2025-06-12T17:29:57.047Z\n\ud83d\udd17 References:\n1. https://github.com/vantage6/vantage6/security/advisories/GHSA-j6g5-p62x-58hw", "creation_timestamp": "2025-06-12T17:35:00.000000Z"}, {"uuid": "37e4935e-29d8-465c-bcb3-5a63bfae3918", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43864", "type": "published-proof-of-concept", "source": "Telegram/oGnFJdmXUCqYx0_xYR0D8dpnhpl9VxD3P3IPRWVfgfpPSsY", "content": "", "creation_timestamp": "2025-04-25T03:30:33.000000Z"}, {"uuid": "d91fc631-2d0a-46d9-a75a-758ab10e5d63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43865", "type": "published-proof-of-concept", "source": "Telegram/oGnFJdmXUCqYx0_xYR0D8dpnhpl9VxD3P3IPRWVfgfpPSsY", "content": "", "creation_timestamp": "2025-04-25T03:30:33.000000Z"}, {"uuid": "8bfce576-d5b9-4547-8026-3b5edaacde01", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43861", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnlvo2d27t2v", "content": "", "creation_timestamp": "2025-04-24T23:52:27.167283Z"}, {"uuid": "68b628e4-bb0b-40bc-959b-fde732a42df5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43865", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lnm2ieuxpjk2", "content": "", "creation_timestamp": "2025-04-25T01:30:10.137691Z"}, {"uuid": "1188ebf8-2693-4ad6-8757-7c5cb2fca824", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43864", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lnm2iia34qq2", "content": "", "creation_timestamp": "2025-04-25T01:30:10.941784Z"}, {"uuid": "1d854668-34bb-441c-9206-291440487ff8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43865", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114396554360753835", "content": "", "creation_timestamp": "2025-04-25T03:48:13.514676Z"}, {"uuid": "5dd73cf4-fdad-4873-accf-c4e6dca17fc8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43865", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lnmen2uyae2y", "content": "", "creation_timestamp": "2025-04-25T04:20:06.731448Z"}, {"uuid": "4d2430fb-4a49-4478-b9d9-4e267fc18f19", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43860", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpuam5h2o42s", "content": "", "creation_timestamp": "2025-05-23T18:19:40.934650Z"}, {"uuid": "5363fb57-b95f-44ef-9dfd-33529605673a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43867", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-219-02", "content": "", "creation_timestamp": "2025-08-07T10:00:00.000000Z"}, {"uuid": "a55b671b-8d68-448e-a7c0-5bc3c66bafec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43865", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/13366", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-43865\n\ud83d\udd25 CVSS Score: 8.2 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H)\n\ud83d\udd39 Description: React Router is a router for React. In versions on the 7.0 branch prior to version 7.5.2, it's possible to modify pre-rendered data by adding a header to the request. This allows to completely spoof its contents and modify all the values \u200b\u200bof the data object passed to the HTML. This issue has been patched in version 7.5.2.\n\ud83d\udccf Published: 2025-04-25T00:18:53.222Z\n\ud83d\udccf Modified: 2025-04-25T00:18:53.222Z\n\ud83d\udd17 References:\n1. https://github.com/remix-run/react-router/security/advisories/GHSA-cpj6-fhp6-mr6j\n2. https://github.com/remix-run/react-router/commit/c84302972a152d851cf5dd859ff332b354b70111\n3. https://github.com/remix-run/react-router/blob/e6c53a0130559b4a9bd47f9cf76ea5b08a69868a/packages/react-router/lib/server-runtime/routes.ts#L87", "creation_timestamp": "2025-04-25T01:10:55.000000Z"}, {"uuid": "435ffc74-a581-48fb-9496-9d2d8a3e98a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43865", "type": "seen", "source": "https://t.me/cvedetector/23722", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-43865 - React Router HTTP Header Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-43865 \nPublished : April 25, 2025, 1:15 a.m. | 1\u00a0hour, 29\u00a0minutes ago \nDescription : React Router is a router for React. In versions on the 7.0 branch prior to version 7.5.2, it's possible to modify pre-rendered data by adding a header to the request. This allows to completely spoof its contents and modify all the values \u200b\u200bof the data object passed to the HTML. This issue has been patched in version 7.5.2. \nSeverity: 8.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-25T04:58:32.000000Z"}, {"uuid": "1fd2e1cc-0c9e-4f85-acb6-14e1c8a5f5e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43864", "type": "seen", "source": "https://t.me/cvedetector/23721", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-43864 - React Router Cache Poisoning Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-43864 \nPublished : April 25, 2025, 1:15 a.m. | 1\u00a0hour, 29\u00a0minutes ago \nDescription : React Router is a router for React. Starting in version 7.2.0 and prior to version 7.5.2, it is possible to force an application to switch to SPA mode by adding a header to the request. If the application uses SSR and is forced to switch to SPA, this causes an error that completely corrupts the page. If a cache system is in place, this allows the response containing the error to be cached, resulting in a cache poisoning that strongly impacts the availability of the application. This issue has been patched in version 7.5.2. \nSeverity: 7.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-25T04:58:31.000000Z"}, {"uuid": "78268b8c-9820-47a6-8b36-3a1dfea9ee4a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43862", "type": "seen", "source": "https://t.me/cvedetector/23768", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-43862 - Dify APP Orchestration Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-43862 \nPublished : April 25, 2025, 3:15 p.m. | 1\u00a0hour, 44\u00a0minutes ago \nDescription : Dify is an open-source LLM app development platform. Prior to version 0.6.12, a normal user is able to access and modify APP orchestration, even though the web UI of APP orchestration is not presented for a normal user. This access control flaw allows non-admin users to make unauthorized access and changes on the APPSs. This issue has been patched in version 0.6.12. A workaround for this vulnerability involves updating the the access control mechanisms to enforce stricter user role permissions and implementing role-based access controls (RBAC) to ensure that only users with admin privileges can access Orchestration of the APPs. \nSeverity: 7.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"25 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-25T19:11:15.000000Z"}, {"uuid": "724aa162-374e-4c9f-8e80-7d6efd174ca6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43864", "type": "published-proof-of-concept", "source": "Telegram/6FX2IebycktZzQVQqd5RFhAkDCZpjEYMsyZyU71AztwjdDiy", "content": "", "creation_timestamp": "2025-04-28T06:04:02.000000Z"}, {"uuid": "15de7fa2-66dd-4fff-9a68-ff8611b67f75", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43865", "type": "published-proof-of-concept", "source": "Telegram/6FX2IebycktZzQVQqd5RFhAkDCZpjEYMsyZyU71AztwjdDiy", "content": "", "creation_timestamp": "2025-04-28T06:04:02.000000Z"}, {"uuid": "94e6330a-fe89-41fb-a7a0-5d2ede813e54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43865", "type": "published-proof-of-concept", "source": "Telegram/hwxTPI13zjfOP4QVdjfyo4btTJ66KygK04v-mdNXcVwmgy0", "content": "", "creation_timestamp": "2025-04-28T09:00:07.000000Z"}, {"uuid": "e1c80823-40ca-473d-b1b8-09a37888f026", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43864", "type": "published-proof-of-concept", "source": "Telegram/kCwx96zqmTdkYxwrmGJzn8TflPgDOGN4WcwsMs0NIIpiaxk", "content": "", "creation_timestamp": "2025-04-27T17:00:12.000000Z"}, {"uuid": "8900b465-cfc2-4b46-8571-3bfebe2b6659", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-43862", "type": "seen", "source": "Telegram/t8K1XuU9DycjdS-BJ0HBwR2vMp2ysg1gNZKK5Q0_GJ-ZI8I", "content": "", "creation_timestamp": "2025-04-25T18:02:30.000000Z"}]}