{"vulnerability": "CVE-2025-1564", "sightings": [{"uuid": "b268213b-90de-40b7-beea-16841f44a554", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1564", "type": "seen", "source": "https://t.me/cvedetector/19217", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-1564 - WordPress SetSail Membership Authentication Bypass\", \n  \"Content\": \"CVE ID : CVE-2025-1564 \nPublished : March 1, 2025, 8:15 a.m. | 31\u00a0minutes ago \nDescription : The SetSail Membership plugin for WordPress is vulnerable to  in all versions up to, and including, 1.0.3. This is due to the plugin not properly verifying a users identity through the social login. This makes it possible for unauthenticated attackers to log in as any user, including administrators and take over access to their account. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-01T10:35:32.000000Z"}, {"uuid": "f6c9b849-bdbe-4433-aabd-f1636e4e3468", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1564", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114086542348346847", "content": "", "creation_timestamp": "2025-03-01T09:48:06.716032Z"}, {"uuid": "ddfe3106-d731-43bf-b09d-2a33bfc4411f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1564", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3ljff5x5q5i2p", "content": "", "creation_timestamp": "2025-03-02T12:00:08.601089Z"}, {"uuid": "8df66afa-e25d-4dbe-884a-fb7d5e7a6f56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1564", "type": "seen", "source": "https://bsky.app/profile/atomicedge.bsky.social/post/3mkejcq3aww2s", "content": "", "creation_timestamp": "2026-04-26T02:33:06.377091Z"}, {"uuid": "90525238-c7d1-44fc-be7f-8ad1544ad8ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1564", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6062", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-1564\n\ud83d\udd25 CVSS Score: 9.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: The SetSail Membership plugin for WordPress is vulnerable to  in all versions up to, and including, 1.0.3. This is due to the plugin not properly verifying a users identity through the social login. This makes it possible for unauthenticated attackers to log in as any user, including administrators and take over access to their account.\n\ud83d\udccf Published: 2025-03-01T07:24:05.077Z\n\ud83d\udccf Modified: 2025-03-01T07:24:05.077Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/c2c2385e-0d1e-435a-9b82-972964084148?source=cve\n2. https://themeforest.net/item/setsail-travel-agency-theme/22832625", "creation_timestamp": "2025-03-01T08:27:09.000000Z"}, {"uuid": "eccce0a7-f7a1-4545-8177-7e77ddf32fdd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1564", "type": "seen", "source": "Telegram/nu5zP1RQJMxhaQWBhFSOb3vErKKnFyrM4knJnup4yvdMGEw", "content": "", "creation_timestamp": "2025-03-01T09:00:53.000000Z"}, {"uuid": "871a999c-78df-47d6-ab1d-eff4e3838107", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-15645", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmaieiywiw2o", "content": "CVE-2025-15645 - Ledger Nano X, Flex, Stax MCU Firmware Update Denial of Service\nCVE ID : CVE-2025-15645\n \n Published : May 19, 2026, 9:41 p.m. | 33\u00a0minutes ago\n \n Description : Ledger Nano X, Flex, and Stax devices contain a denial of service vulnerability in the MCU firmware...", "creation_timestamp": "2026-05-19T22:55:56.683405Z"}, {"uuid": "47954a0c-8b62-4523-9938-84fa985919a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-15649", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mmsqmc7vbf2t", "content": "CVE-2025-15649 - IO::Uncompress::Unzip versions before 2.215 for Perl propagate uncaught exception when parsing zip header with malformed DOS date\nCVE ID : CVE-2025-15649\n \n Published : May 27, 2026, 4:16 a.m. | 15\u00a0minutes ago\n \n Description : IO::Uncompress::Unzip versions be...", "creation_timestamp": "2026-05-27T05:11:23.259456Z"}, {"uuid": "be5e167f-4293-4885-8c4b-262bf60dcd7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-15649", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mmsqoqx2dh2m", "content": "CVE-2025-15649: IO::Uncompress::Unzip versions before 2.215 for Perl propagate uncaught exception when parsing zip header with malformed DOS date", "creation_timestamp": "2026-05-27T05:12:45.517959Z"}]}