{"vulnerability": "cve-2025-45388", "sightings": [{"uuid": "76ebde29-a448-4546-bc10-33e99835b994", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-45388", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15384", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-45388\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Wagtail CMS 6.4.1 is vulnerable to a Stored Cross-Site Scripting (XSS) in the document upload functionality. Attackers can inject malicious code inside a PDF file. When a user clicks the document in the CMS interface, the payload executes.\n\ud83d\udccf Published: 2025-05-07T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-07T18:55:38.602Z\n\ud83d\udd17 References:\n1. https://github.com/echoBRT/Wagtail-CMS-XSS/", "creation_timestamp": "2025-05-07T19:22:18.000000Z"}, {"uuid": "ca92c81e-3f81-46ab-ba84-5ecb9f2ad5fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-45388", "type": "seen", "source": "https://t.me/cvedetector/24756", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-45388 - Wagtail CMS Stored XSS\", \n  \"Content\": \"CVE ID : CVE-2025-45388 \nPublished : May 7, 2025, 7:16 p.m. | 1\u00a0hour, 28\u00a0minutes ago \nDescription : Wagtail CMS 6.4.1 is vulnerable to a Stored Cross-Site Scripting (XSS) in the document upload functionality. Attackers can inject malicious code inside a PDF file. When a user clicks the document in the CMS interface, the payload executes. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-07T23:12:15.000000Z"}, {"uuid": "1eeab29a-f868-4fa5-836b-8acff7074e76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-45388", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lomgxujgzs2p", "content": "", "creation_timestamp": "2025-05-07T22:27:09.035097Z"}, {"uuid": "4da22603-1db3-4a5a-a778-721cdfd2e663", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-45388", "type": "seen", "source": "https://bsky.app/profile/wagtail.org/post/3lor6c5xuko2t", "content": "", "creation_timestamp": "2025-05-09T19:35:07.718867Z"}, {"uuid": "039fbdab-6a35-4419-aba2-e52e0c816ec7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-45388", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lorulqoaek2o", "content": "", "creation_timestamp": "2025-05-10T02:14:11.482672Z"}, {"uuid": "fab318af-204f-4fe5-ae03-0d01b35fff7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-45388", "type": "seen", "source": "https://bsky.app/profile/dasgeldco.bsky.social/post/3lrqlpw3ipy2l", "content": "", "creation_timestamp": "2025-06-16T18:18:22.655843Z"}, {"uuid": "e338ecb2-771d-41fd-9522-760a184e1412", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-45388", "type": "seen", "source": "https://bsky.app/profile/eldinerolat.bsky.social/post/3lrqlr4szyh2s", "content": "", "creation_timestamp": "2025-06-16T18:19:02.970046Z"}, {"uuid": "6ed84d82-a047-4751-910f-db5cbb5228f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-45388", "type": "seen", "source": "https://bsky.app/profile/some-rss-feeds.bsky.social/post/3loxqfedd3i2a", "content": "", "creation_timestamp": "2025-05-12T10:15:00.441024Z"}]}