{"vulnerability": "CVE-2025-2232", "sightings": [{"uuid": "39b14113-3669-416b-be44-b4c8b0c2d88f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22328", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jn2yprf2f", "content": "", "creation_timestamp": "2025-01-07T11:18:04.824267Z"}, {"uuid": "90424c33-7f34-4c1a-bd5f-adc7f2ea2b2c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22329", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113833063056817703", "content": "", "creation_timestamp": "2025-01-15T15:24:58.192756Z"}, {"uuid": "4c0cf98d-556a-4572-89f3-9bc1bb41b1ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22321", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113787471372407498", "content": "", "creation_timestamp": "2025-01-07T14:10:24.262844Z"}, {"uuid": "bab28323-336f-4289-a07f-e8aa0f5bd96f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22320", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113787471358566691", "content": "", "creation_timestamp": "2025-01-07T14:10:23.988898Z"}, {"uuid": "53bae188-19a2-4360-9e3c-fb88179b0033", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22323", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jmobebn2i", "content": "", "creation_timestamp": "2025-01-07T11:17:51.525655Z"}, {"uuid": "9f698358-0af3-4e97-b8f6-ccb851056591", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22323", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113787530392169154", "content": "", "creation_timestamp": "2025-01-07T14:25:24.698071Z"}, {"uuid": "c50f3b33-3a86-4254-8993-9f71d03453b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22324", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113787530406018880", "content": "", "creation_timestamp": "2025-01-07T14:25:25.031958Z"}, {"uuid": "d7c3635c-c542-4a08-84df-ab04d25f2ef9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22325", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113787530439487631", "content": "", "creation_timestamp": "2025-01-07T14:25:25.434102Z"}, {"uuid": "cc1aa46c-e477-4eb1-b02f-ddd2510aa288", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22324", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jmqs4fg2c", "content": "", "creation_timestamp": "2025-01-07T11:17:54.051397Z"}, {"uuid": "0317b3e9-c870-4a73-bae9-8ee16bdc2de9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22326", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113787530453561583", "content": "", "creation_timestamp": "2025-01-07T14:25:25.642749Z"}, {"uuid": "53477c85-567b-4593-a4d6-59945c27b3d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22326", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jmw3rqz2e", "content": "", "creation_timestamp": "2025-01-07T11:17:59.643385Z"}, {"uuid": "457e8f90-e6b2-4e23-a9e2-392e279b9740", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22327", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113787589456600566", "content": "", "creation_timestamp": "2025-01-07T14:40:25.931312Z"}, {"uuid": "2e4f9fb0-3bf2-470c-a6a6-f4ffb54a38b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22324", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jmqs4fg2c", "content": "", "creation_timestamp": "2025-01-07T11:17:54.049128Z"}, {"uuid": "605c6c09-3b5f-4181-a133-8aabbe090019", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22328", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113787589471330432", "content": "", "creation_timestamp": "2025-01-07T14:40:26.182598Z"}, {"uuid": "c6bfff35-fc14-4ab0-93ab-111aefa84f78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22320", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jmj6krk25", "content": "", "creation_timestamp": "2025-01-07T11:17:46.142924Z"}, {"uuid": "b190be44-75bf-46fa-9485-ea76499b65f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22323", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jmobebn2i", "content": "", "creation_timestamp": "2025-01-07T11:17:51.519887Z"}, {"uuid": "7f9bffd1-a31f-43f4-ab71-dbcd4185c3d8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22321", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jmlxv6i2l", "content": "", "creation_timestamp": "2025-01-07T11:17:49.026262Z"}, {"uuid": "a460a583-f970-4199-ae27-212f01a42e8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22321", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jmlxv6i2l", "content": "", "creation_timestamp": "2025-01-07T11:17:49.046753Z"}, {"uuid": "9280a736-7d45-441b-b5e5-8ff91e7e512d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22325", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jmts4uc2o", "content": "", "creation_timestamp": "2025-01-07T11:17:57.239070Z"}, {"uuid": "96fc839a-46e0-43a2-b744-d546c75bf13d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22325", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jmts4uc2o", "content": "", "creation_timestamp": "2025-01-07T11:17:57.248181Z"}, {"uuid": "44ecfed3-7e4e-44f1-88db-2a4e14d463fe", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22326", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jmw3rqz2e", "content": "", "creation_timestamp": "2025-01-07T11:17:59.664197Z"}, {"uuid": "461a9e98-46e1-41b7-8c38-6dba481aa0a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22327", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jmyobwk2o", "content": "", "creation_timestamp": "2025-01-07T11:18:02.347864Z"}, {"uuid": "95606d85-d6a4-4164-a26c-d2f3d8671462", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22329", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfs5zcru4y2b", "content": "", "creation_timestamp": "2025-01-15T16:16:05.238195Z"}, {"uuid": "8f730063-5638-440e-b926-5ff740db0d1b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22328", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lf5jn2yprf2f", "content": "", "creation_timestamp": "2025-01-07T11:18:04.830743Z"}, {"uuid": "d01025d8-5b45-4e6f-a292-83d3c34e7f77", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22322", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lgb24wnnmp2p", "content": "", "creation_timestamp": "2025-01-21T14:16:27.917700Z"}, {"uuid": "4902cc29-5e05-41aa-ab52-9bf29687869f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22322", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113866820147084483", "content": "", "creation_timestamp": "2025-01-21T14:29:50.476007Z"}, {"uuid": "381af545-8df4-489d-9ae3-2aa182570486", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2232", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114161097328536256", "content": "", "creation_timestamp": "2025-03-14T13:48:24.452354Z"}, {"uuid": "7db3e01c-0e56-403f-8828-5d1477cf10b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2232", "type": "seen", "source": "https://bsky.app/profile/cyberalerts.bsky.social/post/3lkdmynp7pi2v", "content": "", "creation_timestamp": "2025-03-14T12:40:11.881275Z"}, {"uuid": "4008cdff-9c4e-4f8a-a1fa-6a8a3f975731", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2232", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lkepn65rpj24", "content": "", "creation_timestamp": "2025-03-14T23:00:09.594103Z"}, {"uuid": "32c1ada0-5f0c-4557-be45-c53a617509f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2232", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3lkfxuml3nr2r", "content": "", "creation_timestamp": "2025-03-15T11:00:07.948236Z"}, {"uuid": "ca706622-4c23-439a-9035-95ff6d9cb591", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22326", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/429", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22326\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in 5centsCDN 5centsCDN allows Reflected XSS.This issue affects 5centsCDN: from n/a through 24.8.16.\n\ud83d\udccf Published: 2025-01-07T10:48:48.718Z\n\ud83d\udccf Modified: 2025-01-07T15:19:24.726Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/5centscdn/vulnerability/wordpress-5centscdn-wordpress-cdn-plugin-plugin-24-8-16-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-07T15:37:33.000000Z"}, {"uuid": "fd5a45a7-aedb-4400-b2f2-e1d384bc1f81", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2232", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkdra67fjx2l", "content": "", "creation_timestamp": "2025-03-14T13:56:00.598755Z"}, {"uuid": "fb5faebf-d5af-45b2-8286-26c22c8245cc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22320", "type": "seen", "source": "https://t.me/cvedetector/20030", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-13413 - ProductDyno WordPress Reflected Cross-Site Scripting Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-13413 \nPublished : March 11, 2025, 5:15 a.m. | 37\u00a0minutes ago \nDescription : The ProductDyno plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the \u2018res\u2019 parameter in all versions up to, and including, 1.0.24 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts into pages that execute if they can successfully trick a user into performing an action such as clicking on a link. This vulnerability is potentially a duplicate of CVE-2025-22320. \nSeverity: 6.1 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T07:35:34.000000Z"}, {"uuid": "39d856ec-5904-4222-831a-2483b9fb7d3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22327", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/428", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22327\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Olaf Lederer EO4WP allows Stored XSS.This issue affects EO4WP: from n/a through 1.0.7.\n\ud83d\udccf Published: 2025-01-07T10:48:47.925Z\n\ud83d\udccf Modified: 2025-01-07T15:20:48.241Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/fw-integration-for-emailoctopus/vulnerability/wordpress-eo4wp-plugin-1-0-7-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-07T15:37:18.000000Z"}, {"uuid": "465ad138-494e-4993-b671-3ce11b4f3d68", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22323", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/434", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22323\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jewel Theme Image Hover Effects for Elementor allows Stored XSS.This issue affects Image Hover Effects for Elementor: from n/a through 1.0.2.3.\n\ud83d\udccf Published: 2025-01-07T10:48:51.121Z\n\ud83d\udccf Modified: 2025-01-07T15:15:51.825Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/image-hover-effects-elementor-addon/vulnerability/wordpress-image-hover-effects-for-elementor-plugin-1-0-2-3-stored-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-07T15:38:08.000000Z"}, {"uuid": "521bf9c6-bd1a-4e0d-85cf-7a1c79f7d745", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22324", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/433", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22324\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Andon Ivanov OZ Canonical allows Reflected XSS.This issue affects OZ Canonical: from n/a through 0.5.\n\ud83d\udccf Published: 2025-01-07T10:48:50.247Z\n\ud83d\udccf Modified: 2025-01-07T15:16:13.928Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/oz-canonical/vulnerability/wordpress-oz-canonical-plugin-0-5-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-07T15:38:03.000000Z"}, {"uuid": "077e5132-14e8-4c36-bddc-098b0dca18f4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22325", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/431", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22325\n\ud83d\udd39 Description: Cross-Site Request Forgery (CSRF) vulnerability in Nik Chankov Autocompleter allows Stored XSS.This issue affects Autocompleter: from n/a through 1.3.5.2.\n\ud83d\udccf Published: 2025-01-07T10:48:49.474Z\n\ud83d\udccf Modified: 2025-01-07T15:17:35.442Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/autocompleter/vulnerability/wordpress-autocompleter-plugin-1-3-5-2-csrf-to-stored-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-07T15:37:50.000000Z"}, {"uuid": "81662078-a0d5-410c-8d70-d49b25547195", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22321", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/435", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22321\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in TheInnovs ElementsCSS Addons for Elementor allows Stored XSS.This issue affects ElementsCSS Addons for Elementor: from n/a through 1.0.8.7.\n\ud83d\udccf Published: 2025-01-07T10:48:51.889Z\n\ud83d\udccf Modified: 2025-01-07T15:13:24.270Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/css-for-elementor/vulnerability/wordpress-elementscss-addons-for-elementor-plugin-1-0-8-7-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-07T15:38:14.000000Z"}, {"uuid": "4ca29cc6-e3e6-4c1f-8c7a-6a3edf6d0944", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22329", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/1789", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22329\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in AGILELOGIX Free Google Maps allows Stored XSS.This issue affects Free Google Maps: from n/a through 1.0.1.\n\ud83d\udccf Published: 2025-01-15T15:23:39.241Z\n\ud83d\udccf Modified: 2025-01-15T16:50:27.858Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/wp-map/vulnerability/wordpress-free-google-maps-plugin-1-0-1-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-15T16:54:29.000000Z"}, {"uuid": "ccf9887f-d1fe-4121-80f7-8c954ba291a9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22322", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2391", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22322\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Private Messages for UserPro allows Reflected XSS. This issue affects Private Messages for UserPro: from n/a through 4.10.0.\n\ud83d\udccf Published: 2025-01-21T13:40:34.505Z\n\ud83d\udccf Modified: 2025-01-21T13:40:34.505Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/userpro-messaging/vulnerability/wordpress-private-messages-for-userpro-plugin-4-10-0-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-21T14:01:37.000000Z"}, {"uuid": "f7560fd8-8437-4f22-adc9-90ce220878fd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2232", "type": "seen", "source": "https://t.me/cvedetector/20287", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2232 - Realteo - Real Estate Plugin by Purethemes WordPress Authentication Bypass Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2232 \nPublished : March 14, 2025, 12:15 p.m. | 1\u00a0hour, 11\u00a0minutes ago \nDescription : The Realteo - Real Estate Plugin by Purethemes plugin for WordPress, used by the Findeo Theme, is vulnerable to authentication bypass in all versions up to, and including, 1.2.8. This is due to insufficient role restrictions in the 'do_register_user' function. This makes it possible for unauthenticated attackers to register an account with the Administrator role. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-14T15:02:10.000000Z"}, {"uuid": "ee04ab13-5993-49e6-912e-062050dd4a40", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22320", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7103", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-13413\n\ud83d\udd25 CVSS Score: 6.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: The ProductDyno plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the \u2018res\u2019 parameter in all versions up to, and including, 1.0.24 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts into pages that execute if they can successfully trick a user into performing an action such as clicking on a link. This vulnerability is potentially a duplicate of CVE-2025-22320.\n\ud83d\udccf Published: 2025-03-11T04:21:46.530Z\n\ud83d\udccf Modified: 2025-03-11T04:21:46.530Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/fdc1289a-abd1-43db-89b7-3e81878a0f9a?source=cve\n2. https://plugins.trac.wordpress.org/browser/productdyno/trunk/admin/partials/productdyno-admin-display.php#L81\n3. https://wordpress.org/plugins/productdyno/#developers\n4. https://plugins.trac.wordpress.org/changeset/3251678/", "creation_timestamp": "2025-03-11T04:41:05.000000Z"}, {"uuid": "575b7793-fcae-4935-b443-a0fa0fb4eed1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22328", "type": "seen", "source": "https://t.me/cvedetector/14523", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22328 - Elevio Stored XSS CSRF\", \n  \"Content\": \"CVE ID : CVE-2025-22328 \nPublished : Jan. 7, 2025, 11:15 a.m. | 40\u00a0minutes ago \nDescription : Cross-Site Request Forgery (CSRF) vulnerability in Elevio Elevio allows Stored XSS.This issue affects Elevio: from n/a through 4.4.1. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-07T13:02:18.000000Z"}, {"uuid": "7241b748-bfb1-49d7-9367-acc3d87547ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22322", "type": "seen", "source": "https://t.me/cvedetector/15969", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22322 - UserPro XSS in Private Messages\", \n  \"Content\": \"CVE ID : CVE-2025-22322 \nPublished : Jan. 21, 2025, 2:15 p.m. | 42\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NotFound Private Messages for UserPro allows Reflected XSS. This issue affects Private Messages for UserPro: from n/a through 4.10.0. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-21T16:08:08.000000Z"}, {"uuid": "f5d9b450-2849-402e-a085-254178301e7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2232", "type": "seen", "source": "Telegram/MbK7CLTupDnO_X3pHtSmXk2cylWNwKBZdDyF1xpDGo3-9OU", "content": "", "creation_timestamp": "2025-03-14T13:00:15.000000Z"}, {"uuid": "079ee7ed-cef2-4913-9046-45bdb26f04ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22323", "type": "seen", "source": "https://t.me/cvedetector/14527", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22323 - Elementor Jewel Theme XSS\", \n  \"Content\": \"CVE ID : CVE-2025-22323 \nPublished : Jan. 7, 2025, 11:15 a.m. | 40\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Jewel Theme Image Hover Effects for Elementor allows Stored XSS.This issue affects Image Hover Effects for Elementor: from n/a through 1.0.2.3. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-07T13:02:21.000000Z"}, {"uuid": "ea11d29e-2681-42ad-8b79-559adc3688eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-22321", "type": "seen", "source": "https://t.me/cvedetector/14526", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22321 - Elementor ElementsCSS Stored Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2025-22321 \nPublished : Jan. 7, 2025, 11:15 a.m. | 40\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in TheInnovs ElementsCSS Addons for Elementor allows Stored XSS.This issue affects ElementsCSS Addons for Elementor: from n/a through 1.0.8.7. \nSeverity: 6.5 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"07 Jan 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-01-07T13:02:20.000000Z"}]}