https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Sun, 28 Jun 2026 13:56:44 +0000 https://vulnerability.circl.lu/sighting/4894c378-f246-4222-85c4-26f0040aa709/export {"uuid": "4894c378-f246-4222-85c4-26f0040aa709", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5304", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/19805", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-5304\n\ud83d\udd25 CVSS Score: 9.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: The PT Project Notebooks plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization in the wpnb_pto_new_users_add() function in versions 1.0.0 through 1.1.3. This makes it possible for unauthenticated attackers to elevate their privileges to that of an administrator.\n\ud83d\udccf Published: 2025-06-28T05:29:51.306Z\n\ud83d\udccf Modified: 2025-06-28T05:29:51.306Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/552ec9fc-5bff-4bee-be04-39892c89cd59?source=cve\n2. https://wordpress.org/plugins/project-notebooks/#developers\n3. https://plugins.trac.wordpress.org/browser/project-notebooks/tags/1.1.3/includes/structure/admin/pto_admin_settings.php#L233\n4. https://plugins.trac.wordpress.org/browser/project-notebooks/tags/1.1.3/includes/structure/admin/pto_admin_settings.php#L36", "creation_timestamp": "2025-06-28T05:51:14.000000Z"} {"uuid": "4894c378-f246-4222-85c4-26f0040aa709", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5304", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/19805", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-5304\n\ud83d\udd25 CVSS Score: 9.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: The PT Project Notebooks plugin for WordPress is vulnerable to Privilege Escalation due to missing authorization in the wpnb_pto_new_users_add() function in versions 1.0.0 through 1.1.3. This makes it possible for unauthenticated attackers to elevate their privileges to that of an administrator.\n\ud83d\udccf Published: 2025-06-28T05:29:51.306Z\n\ud83d\udccf Modified: 2025-06-28T05:29:51.306Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/552ec9fc-5bff-4bee-be04-39892c89cd59?source=cve\n2. https://wordpress.org/plugins/project-notebooks/#developers\n3. https://plugins.trac.wordpress.org/browser/project-notebooks/tags/1.1.3/includes/structure/admin/pto_admin_settings.php#L233\n4. https://plugins.trac.wordpress.org/browser/project-notebooks/tags/1.1.3/includes/structure/admin/pto_admin_settings.php#L36", "creation_timestamp": "2025-06-28T05:51:14.000000Z"} https://vulnerability.circl.lu/sighting/4894c378-f246-4222-85c4-26f0040aa709/export Sat, 28 Jun 2025 05:51:14 +0000 https://vulnerability.circl.lu/sighting/114272ad-dac9-46ef-92d6-9025e2ed7061/export {"uuid": "114272ad-dac9-46ef-92d6-9025e2ed7061", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5304", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lsnn2xopw72i", "content": "", "creation_timestamp": "2025-06-28T07:29:39.320466Z"} {"uuid": "114272ad-dac9-46ef-92d6-9025e2ed7061", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5304", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lsnn2xopw72i", "content": "", "creation_timestamp": "2025-06-28T07:29:39.320466Z"} https://vulnerability.circl.lu/sighting/114272ad-dac9-46ef-92d6-9025e2ed7061/export Sat, 28 Jun 2025 07:29:39 +0000 https://vulnerability.circl.lu/sighting/9a45480b-3ab1-4a62-872a-dd92bfb58c2f/export {"uuid": "9a45480b-3ab1-4a62-872a-dd92bfb58c2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5304", "type": "published-proof-of-concept", "source": "Telegram/Fz8qi4T-6iTDn6awmY9nyLD53jkqWvmrGjuYAqDhlfMsq-Q", "content": "", "creation_timestamp": "2025-09-27T09:00:04.000000Z"} {"uuid": "9a45480b-3ab1-4a62-872a-dd92bfb58c2f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5304", "type": "published-proof-of-concept", "source": "Telegram/Fz8qi4T-6iTDn6awmY9nyLD53jkqWvmrGjuYAqDhlfMsq-Q", "content": "", "creation_timestamp": "2025-09-27T09:00:04.000000Z"} https://vulnerability.circl.lu/sighting/9a45480b-3ab1-4a62-872a-dd92bfb58c2f/export Sat, 27 Sep 2025 09:00:04 +0000 https://vulnerability.circl.lu/sighting/9fec6d6e-aaf6-4b4d-9ba9-9cb8624ef013/export {"uuid": "9fec6d6e-aaf6-4b4d-9ba9-9cb8624ef013", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5304", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lzyvtra5pl2p", "content": "", "creation_timestamp": "2025-09-29T21:02:22.711159Z"} {"uuid": "9fec6d6e-aaf6-4b4d-9ba9-9cb8624ef013", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5304", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lzyvtra5pl2p", "content": "", "creation_timestamp": "2025-09-29T21:02:22.711159Z"} https://vulnerability.circl.lu/sighting/9fec6d6e-aaf6-4b4d-9ba9-9cb8624ef013/export Mon, 29 Sep 2025 21:02:22 +0000