{"vulnerability": "cve-2025-51591", "sightings": [{"uuid": "92052c75-f54a-4571-bb43-3c7419834c42", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/53035", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-51591 Pandoc SSRF vulnerability Proof of Concept\nURL\uff1ahttps://github.com/Malayke/CVE-2025-51591-Pandoc-SSRF-POC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-25T11:28:26.000000Z"}, {"uuid": "fd954721-7c6b-42c7-aebb-4ec8f2875867", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "published-proof-of-concept", "source": "Telegram/xNi-QJgTYNVGvsNmT_0iHQRJgkuu3lNU-CAGjEVqosCwtg", "content": "", "creation_timestamp": "2025-09-25T03:00:40.000000Z"}, {"uuid": "fa56a70e-facb-45d4-b84a-69a3bc5fa0fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "exploited", "source": "https://t.me/MalaysiaHacktivistz/16374", "content": "Hackers Exploit Pandoc CVE-2025-51591 to Target AWS IMDS and Steal EC2 IAM Credentials \u2013 thehackernews.com\n\nWed, 24 Sep 2025 15:15:00", "creation_timestamp": "2025-09-24T08:04:13.000000Z"}, {"uuid": "fe5fa5d8-c683-467c-8105-e50095fa3099", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/53034", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-51591 Pandoc SSRF vulnerability Proof of Concept\nURL\uff1ahttps://github.com/Malayke/CVE-2022-35583-Pandoc-SSRF-POC\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-25T11:21:55.000000Z"}, {"uuid": "e09cdf76-e1ca-46cf-aa9d-a9b8da3fb3ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "published-proof-of-concept", "source": "Telegram/FtrZgkpLeYmB_Gzr3BO-OhU7P_MnBX2TUcQYinIY1IaRYFs", "content": "", "creation_timestamp": "2025-09-25T15:00:10.000000Z"}, {"uuid": "18f66e42-c9ed-47b2-aa3d-7817976321dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "exploited", "source": "Telegram/63Ywe12gnG7E1mjEm9qBRIXWQLRqnA7nYz9eO9WBeT2jKPw", "content": "", "creation_timestamp": "2025-09-25T15:00:07.000000Z"}, {"uuid": "f8a9d722-cb7b-48ea-9ce2-6a787970b927", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "exploited", "source": "https://t.me/DarkWebInformer_News/8774", "content": "\ud83d\udea8 News Alert!\n\nSource: The Hacker News\nTitle: Hackers Exploit Pandoc CVE-2025-51591 to Target AWS IMDS and Steal EC2 IAM Credentials\nLink: https://thehackernews.com/2025/09/hackers-exploit-pandoc-cve-2025-51591.html", "creation_timestamp": "2025-09-24T07:30:33.000000Z"}, {"uuid": "356bafc7-c4db-49ea-b62d-08087c96e207", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "exploited", "source": "Telegram/PYmlawexHpayo7N6DA7Y4t3g_HuggkSbrRqXIyNnjJemkQ", "content": "", "creation_timestamp": "2025-09-24T11:00:15.000000Z"}, {"uuid": "63f89341-dd0c-4d88-a86b-6a27085290c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "exploited", "source": "https://t.me/thehackernews/7587", "content": "\ud83d\udea8 Researchers spotted real-world attacks exploiting a Linux flaw (CVE-2025-51591) in Pandoc to target AWS EC2 IMDS and steal IAM creds.\n\nIf you\u2019re still on IMDSv1, you\u2019re a sitting duck. Enforce IMDSv2 & sandbox Pandoc.\n\nDetails \u2192 https://thehackernews.com/2025/09/hackers-exploit-pandoc-cve-2025-51591.html", "creation_timestamp": "2025-09-24T07:24:27.000000Z"}, {"uuid": "d0059061-786b-484f-8b1b-6606f2da232e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "5b423b35-335e-4b31-9263-26380514d58d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "7e198382-5c9c-405d-a8fa-e4d3bbef26ac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "c6258bf1-ce3a-436d-a9ec-d6fbdb51688d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "24faac8a-b5cc-4a9c-a421-3a970116554f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "ea5e1355-d829-4ffc-a90f-a1cfc23c44d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "a0411e74-0ba0-4624-859d-7e8eec507f29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://thehackernews.com/2025/09/hackers-exploit-pandoc-cve-2025-51591.html", "content": "", "creation_timestamp": "2025-09-24T05:15:00.000000Z"}, {"uuid": "1129863a-39e6-44dd-be43-b5fac1134b85", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-51591", "type": "seen", "source": "https://infosec.exchange/users/jbhall56/statuses/115258944463443370", "content": "", "creation_timestamp": "2025-09-24T11:05:21.578399Z"}, {"uuid": "ba88ad37-70c9-43a3-be73-5e99ace9444b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "02fab820-ce88-4ebf-8bf3-16626b3ca33f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "38a2c3c0-b4b8-4ee9-a082-9806165732a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "b5044332-7e70-4005-93e6-2fb657ff02c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114834900611046360", "content": "", "creation_timestamp": "2025-07-11T13:45:26.095352Z"}, {"uuid": "2daf78ac-f8d6-4098-9f2a-2152bd459c59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lztuw3pudc2j", "content": "", "creation_timestamp": "2025-09-27T21:02:31.755825Z"}, {"uuid": "eb1c4b15-a574-4515-bd58-82ba069c0446", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "915987f3-6d07-49f5-9982-7066a2de6547", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "e5e0e700-4640-43e7-8f7f-38a857261d37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://bsky.app/profile/infosecindustry.bsky.social/post/3lzkwark2pe2b", "content": "", "creation_timestamp": "2025-09-24T07:32:20.076470Z"}, {"uuid": "2689bf0c-2180-4755-8b63-799d97d6e7af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://bsky.app/profile/ninjaowl.ai/post/3lzkwjfa6tk2j", "content": "", "creation_timestamp": "2025-09-24T07:37:09.555979Z"}, {"uuid": "6ee0577a-c165-4c38-9e7a-10e0ec0bdbe8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lzkwn7na3c2m", "content": "", "creation_timestamp": "2025-09-24T07:39:18.446711Z"}, {"uuid": "c72e351b-f275-430e-8e47-198df58d6938", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lzkxjd4y35u2", "content": "", "creation_timestamp": "2025-09-24T07:55:04.275008Z"}, {"uuid": "754170de-4013-4e95-9008-f4530b1e4c7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "c71d3224-a6d6-440d-ada9-ae2607f3aff4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "97821369-acb1-4c61-ae9f-5eab60e56e65", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "bde3876e-45ff-433e-9602-aa2e91a24fb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-51591", "type": "seen", "source": "https://sploitus.com/exploit?id=9F3A9BDC-91E5-5753-AFCD-9F412A964DF0&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-25T04:29:53.000000Z"}, {"uuid": "70270433-287f-4fbe-be2b-55dd7a9bedf0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-51591", "type": "seen", "source": "https://infosec.exchange/users/patrickcmiller/statuses/115261329948706142", "content": "", "creation_timestamp": "2025-09-24T21:12:01.544937Z"}]}