{"vulnerability": "cve-2025-48828", "sightings": [{"uuid": "1baaf2f6-26eb-4874-a2cc-33b677d6a7cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "published-proof-of-concept", "source": "Telegram/seeOg7d7Xdx0LWEqXd7dvE90Oq6nBMNvrC8yGWUmnEYbL4k", "content": "", "creation_timestamp": "2025-06-26T03:00:05.000000Z"}, {"uuid": "17db0ced-2bd6-4b18-9490-6b01b99efbf1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://t.me/breachdetector/785918", "content": "{\n  \"Source\": \"Darkforums[.]st\",\n  \"Content\": \"[CVE-2025-48828] Pre-Auth vBulletin RCE (replaceAdTemplate)\", \n  \"author\": \"cache\",\n  \"Detection Date\": \"13 Jun 2025\",\n  \"Type\": \"Data leak\"\n}\n\ud83d\udd39 t.me/breachdetector \ud83d\udd39", "creation_timestamp": "2025-06-13T22:47:22.000000Z"}, {"uuid": "1f8ca486-a0cc-4476-99a7-d8a708a54afe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/technijian.bsky.social/post/3lqmpurous22c", "content": "", "creation_timestamp": "2025-06-02T11:56:52.662593Z"}, {"uuid": "bd70b898-7dfe-4d92-9956-e92cd420759d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lq4xrtm63mz2", "content": "", "creation_timestamp": "2025-05-27T05:35:49.129336Z"}, {"uuid": "b30aab0c-0e77-4a2c-8846-ed605f9ae1e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lq54c4j6sp2y", "content": "", "creation_timestamp": "2025-05-27T06:56:26.812948Z"}, {"uuid": "a1eed957-95a5-4cde-889f-ddb15dfffff9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/earlybirdsinvest.bsky.social/post/3lqhbjdvicu2s", "content": "", "creation_timestamp": "2025-05-31T07:56:35.560180Z"}, {"uuid": "24f37743-02f7-440d-af9f-476a6d64c0d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114579979935762719", "content": "", "creation_timestamp": "2025-05-27T13:15:45.365038Z"}, {"uuid": "29d12541-0e07-49d2-8b19-076789cd86c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lrcgsobzl225", "content": "", "creation_timestamp": "2025-06-11T03:13:12.524665Z"}, {"uuid": "433b4f25-309e-4e81-8735-8a8f3f355390", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lqsmth5jl22h", "content": "", "creation_timestamp": "2025-06-04T20:18:22.696795Z"}, {"uuid": "33762969-8cf8-4737-ae12-c34c11aa015b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/sansisc.bsky.social/post/3lqpkejj7wl2i", "content": "", "creation_timestamp": "2025-06-03T14:56:16.070159Z"}, {"uuid": "7743180a-7e35-4976-8ec1-4676874b5490", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/41890", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aBatch RCE scanner for vulnerable vBulletin instances using replaceAdTemplate exploit.\nURL\uff1ahttps://github.com/ill-deed/vBulletin-CVE-2025-48828-Multi-target\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-06-25T20:06:58.000000Z"}, {"uuid": "ac7e9757-f35f-4e71-b066-3f02e57f0cf5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "published-proof-of-concept", "source": "Telegram/-VwGhvHbAqGxMoIqAuNl2S-GtS9GOszjSHCSlHw-Z7vkd70", "content": "", "creation_timestamp": "2025-06-26T15:00:10.000000Z"}, {"uuid": "98dadc91-8c10-4122-aad4-541bf6031dd2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/114622172462843651", "content": "", "creation_timestamp": "2025-06-04T00:05:53.528258Z"}, {"uuid": "e28ffdfe-f34e-42a0-86e7-4fcb6825c6be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lrcgpyg5wk25", "content": "", "creation_timestamp": "2025-06-11T03:11:53.870963Z"}, {"uuid": "a78be576-254e-474f-ac6e-81c9dd4e0596", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lrcgq2meys25", "content": "", "creation_timestamp": "2025-06-11T03:11:55.056644Z"}, {"uuid": "517b4360-7ba6-4276-9247-110d8a70c310", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lrcgq6wzjk25", "content": "", "creation_timestamp": "2025-06-11T03:11:57.246536Z"}, {"uuid": "1d5e873f-92ab-41b0-ba3d-a7d6d10cbbed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lrcgq4wg5c25", "content": "", "creation_timestamp": "2025-06-11T03:11:56.183794Z"}, {"uuid": "76b368d8-04cc-47fd-a781-89d3c4c59db9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lrcgqaesek25", "content": "", "creation_timestamp": "2025-06-11T03:11:58.357813Z"}, {"uuid": "d4813a37-678d-425d-bc77-9f7657fb968c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/cti-news.bsky.social/post/3lqpn2seoqp2n", "content": "", "creation_timestamp": "2025-06-03T15:44:30.127142Z"}, {"uuid": "da7f231c-1ca2-44d1-904d-f9b003c9a786", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17607", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48828\n\ud83d\udd25 CVSS Score: 9 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: Certain vBulletin versions might allow attackers to execute arbitrary PHP code by abusing Template Conditionals in the template engine. By crafting template code in an alternative PHP function invocation syntax, such as the \"var_dump\"(\"test\") syntax, attackers can bypass security checks and execute arbitrary PHP code.\n\ud83d\udccf Published: 2025-05-27T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-27T03:52:58.855Z\n\ud83d\udd17 References:\n1. https://karmainsecurity.com/dont-call-that-protected-method-vbulletin-rce", "creation_timestamp": "2025-05-27T04:47:58.000000Z"}, {"uuid": "23c3b819-423d-4b99-997a-5db1494ce8bb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "published-proof-of-concept", "source": "https://t.me/TheDarkWebInformer/17809", "content": "\ud83d\udea8CVE-2025-48827 and CVE-2025-48828: vBulletin 5.0.0 through 5.7.5 and 6.0.0 through 6.0.3  Remote Code Execution Vulnerabilities\n\nFOFA Link: https://en.fofa.info/result?qbase64=YXBwPSJ2QnVsbGV0aW4i\nFOFA Query: app=\"vBulletin\"\nResults: 26,046\n\nHunter.how Link: https://hunter.how/list?searchValue=product.name%3D%22vBulletin%22&timestamp=1748994874943\nQuery: product.name=\"vBulletin\"\nResults: 22,121\n\nPoC: https://karmainsecurity.com/dont-call-that-protected-method-vbulletin-rce\nAdvisory: https://github.com/advisories/GHSA-23fp-mrfv-cwv4\nCVSS: 10", "creation_timestamp": "2025-06-04T00:05:59.000000Z"}, {"uuid": "b57d3895-7584-4415-901a-1c77f2e01921", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/cti-news.bsky.social/post/3lqqdsqlpcz2r", "content": "", "creation_timestamp": "2025-06-03T22:31:36.074783Z"}, {"uuid": "1ad57a9d-ab5a-45fa-9763-5aedcfbdc434", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3lqmkeoptsk2g", "content": "", "creation_timestamp": "2025-06-02T10:18:28.711943Z"}, {"uuid": "d133da15-fe2f-4237-9d1f-f18c1c99c297", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3lqmketepi22g", "content": "", "creation_timestamp": "2025-06-02T10:18:29.874601Z"}, {"uuid": "40b20ffc-b56f-47b3-9b46-5cbfdb58be91", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/basefortify.bsky.social/post/3lqmketergk2g", "content": "", "creation_timestamp": "2025-06-02T10:18:31.029238Z"}, {"uuid": "8012f44a-3f26-47b6-9fc8-063af8efcc1a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lrygbxnwyx24", "content": "", "creation_timestamp": "2025-06-19T21:02:26.093944Z"}, {"uuid": "81d251df-0721-4e54-8101-a7ca38c55f84", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3lqn73qasrs2h", "content": "", "creation_timestamp": "2025-06-02T16:29:10.212235Z"}, {"uuid": "ab11cd69-2cc2-41af-80fe-94405379e0cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3lqnb6oj3ha22", "content": "", "creation_timestamp": "2025-06-02T17:06:36.564457Z"}, {"uuid": "b7f11198-2ae6-4ebc-9564-738e62018d47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lsu3g2b2y42i", "content": "", "creation_timestamp": "2025-06-30T21:02:25.494858Z"}, {"uuid": "a21306da-8c25-4cb5-bcdd-de388794ee80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/ethicalhack3r.bsky.social/post/3lq5jgmx7rk2v", "content": "", "creation_timestamp": "2025-05-27T10:51:39.581830Z"}, {"uuid": "c117e814-49b0-4faf-bd19-22aca57fadfe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://bsky.app/profile/undercode.bsky.social/post/3lr54fbkzdw2n", "content": "", "creation_timestamp": "2025-06-09T00:23:25.076728Z"}, {"uuid": "8e492116-b7dc-439b-9a31-c23c680c784d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://mstdn.ca/users/rfwaveio/statuses/114608080938242946", "content": "", "creation_timestamp": "2025-06-01T12:22:16.514814Z"}, {"uuid": "286a4814-bce0-490e-b697-25ed6c8b646b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "MISP/a9d21043-f825-4bac-8d2b-56fb9e8343e7", "content": "", "creation_timestamp": "2025-10-23T21:13:04.000000Z"}, {"uuid": "8eb86423-bf3b-49c1-a112-8d69b92b2ef3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-48828", "type": "seen", "source": "https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/multi/http/vbulletin_replace_ad_template_rce.rb", "content": "", "creation_timestamp": "2025-06-29T14:45:21.000000Z"}]}