{"vulnerability": "cve-2025-6384", "sightings": [{"uuid": "97150532-7e19-4006-9e0d-5dc47a720f74", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-63848", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m63jqkgfh72s", "content": "", "creation_timestamp": "2025-11-20T19:44:34.056002Z"}, {"uuid": "369cc07e-14b9-4335-a869-5cbcbb4c1bc4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "ce0397a9-59e0-4963-8b57-0eec14b2e857", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "2db1e4af-bd57-4118-9ff1-99a57313e19f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "ba97f444-4e77-48bf-a2fc-81715aa68327", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "da948af2-7a07-4df9-9f3a-5a8e34a508f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "7dec5d43-e73d-4b16-a3b4-c90c1c76c983", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "cc287f85-3fc4-417c-9a86-06c8ad68f1c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "Telegram/QDVONAJ-_zoxa8IF5yGSkPSQU1xz6kI0q_fAwwtPOjWAaZ4", "content": "", "creation_timestamp": "2025-06-19T22:31:26.000000Z"}, {"uuid": "23c02e61-1cc6-4ac2-b0a9-07463e236c55", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "published-proof-of-concept", "source": "Telegram/WPoy9c2cHP2IAaCldzl6FUR7HZxQWno4jnH0Q5apY9_UosI", "content": "", "creation_timestamp": "2025-09-26T03:00:11.000000Z"}, {"uuid": "3675d006-d651-47f7-b4fe-47d479681ac0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "1872286e-c41c-48a2-ad6f-75fe46b4e45b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "de57066b-8aac-4ab7-91bb-10e0d24e8676", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "14318756-0ba6-47c6-9f4d-eedf57c6d250", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-63848", "type": "published-proof-of-concept", "source": "Telegram/aRGPKXY-unySCakIeiwZpvsWQTBILv2AcqsfIsNq9TG1ViA", "content": "", "creation_timestamp": "2025-11-18T09:00:05.000000Z"}, {"uuid": "b25b9fcd-0e36-47fc-8cab-7230f3c54470", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "published-proof-of-concept", "source": "Telegram/EE11uqBQVLpsQydITlz0aVAC6FP3tcFNMSmkW7yu38gZFIM", "content": "", "creation_timestamp": "2025-09-26T09:00:05.000000Z"}, {"uuid": "1c7f8781-9aeb-40b9-a962-412e4d24baf1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrypc23fhc2r", "content": "", "creation_timestamp": "2025-06-19T23:43:29.996386Z"}, {"uuid": "fe4f746b-14b8-4407-8638-7841e0419877", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "5ab2e62b-0a09-4ff9-9121-3a2a7ebe0f4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "c0285156-4660-4514-b4c2-68d82fe8fb2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "401cee42-36ac-4d24-90f2-c05ef1f2d99b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "a96be976-0505-4f4d-b81b-951885481ae7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18885", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-6384\n\ud83d\udd25 CVSS Score: 7.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:H/AT:N/PR:H/UI:N/VC:L/VI:H/VA:H/SC:H/SI:H/SA:H)\n\ud83d\udd39 Description: Improper Control of Dynamically-Managed Code Resources vulnerability in Crafter Studio of CrafterCMS allows authenticated developers to execute OS commands via Groovy Sandbox Bypass.\n\nBy inserting malicious Groovy elements, an attacker may bypass Sandbox restrictions and obtain RCE (Remote Code Execution).\n\nThis issue affects CrafterCMS: from 4.0.0 through 4.2.2.\n\ud83d\udccf Published: 2025-06-19T20:57:04.714Z\n\ud83d\udccf Modified: 2025-06-19T20:57:04.714Z\n\ud83d\udd17 References:\n1. https://docs.craftercms.org/current/security/advisory.html#cv-2025061901", "creation_timestamp": "2025-06-19T21:44:52.000000Z"}, {"uuid": "ea46fcc1-bbd0-4952-9438-15b3390b03e1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/47052", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aCVE-2025-6384: Groovy Sandbox Bypass 2 in CrafterCMS\nURL\uff1ahttps://github.com/mbadanoiu/CVE-2025-6384\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-08-08T20:43:22.000000Z"}, {"uuid": "5846c764-ecfa-4bd1-9574-52c68ae55dbe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/53112", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aPoC exploit for an authenticated RCE in CrafterCMS via Groovy sandbox bypass (CVE-2025-6384)\nURL\uff1ahttps://github.com/maestro-ant/CrafterCMS-CVE-2025-6384\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-09-26T02:32:13.000000Z"}, {"uuid": "a3b38bc5-f94c-44ea-b430-639548d595d1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/53109", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aPoC exploit for an authenticated RCE in CrafterCMS via Groovy sandbox bypass (CVE-2025-6384)\nURL\uff1ahttps://github.com/maestro-ant/CrafterCMS-Groovy-RCE---CVE-2025-6384\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-09-26T02:10:20.000000Z"}, {"uuid": "32c4d0e0-5f54-4c61-a21e-df47f5e0c155", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "published-proof-of-concept", "source": "Telegram/YQITfHnJ1jEobporBTvOWGbzSKzyrqp-qTipC9_e_7LH7WU", "content": "", "creation_timestamp": "2025-08-10T04:53:41.000000Z"}, {"uuid": "5ba075d3-cd46-4f3f-bd6e-43b1f445870a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "2af7128a-e4f6-429c-8ab3-b3bdad10481e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://sploitus.com/exploit?id=8320E218-BC4D-5637-9982-AEA7AD26E898&utm_source=rss&utm_medium=rss", "content": "", "creation_timestamp": "2025-09-26T00:08:30.000000Z"}, {"uuid": "c9d72dc8-0586-4685-bc5f-f0ccc5ff1be9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-6384", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lw5oyuydnu2f", "content": "", "creation_timestamp": "2025-08-11T21:02:28.715534Z"}]}