{"vulnerability": "CVE-2025-2390", "sightings": [{"uuid": "fce40a51-c8a3-4234-bfb0-0d1519ccc34e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23908", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7hcnd5w2p", "content": "", "creation_timestamp": "2025-01-16T21:19:47.838738Z"}, {"uuid": "44134f66-d8e1-4041-a422-2766140b642b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23902", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7h5hous2j", "content": "", "creation_timestamp": "2025-01-16T21:19:42.360193Z"}, {"uuid": "91f5ac1d-98c3-4e53-8984-fd32d1fb0485", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23901", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7h32ino2p", "content": "", "creation_timestamp": "2025-01-16T21:19:40.263704Z"}, {"uuid": "c5f9aab1-b50d-433b-9cf8-d1b4459a3e7f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23907", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7ha2ebb2c", "content": "", "creation_timestamp": "2025-01-16T21:19:45.223144Z"}, {"uuid": "0bb6c42d-ce55-41f7-bf16-a99296dd2108", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23909", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7hew6mp2f", "content": "", "creation_timestamp": "2025-01-16T21:19:50.392939Z"}, {"uuid": "14118958-1be6-48db-9914-5de1a51a7966", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23900", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7gxwcr32r", "content": "", "creation_timestamp": "2025-01-16T21:19:36.716918Z"}, {"uuid": "bfe98f0a-4f7e-482e-9556-b20473183494", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23905", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3li5c24qjde2i", "content": "", "creation_timestamp": "2025-02-14T13:17:47.719512Z"}, {"uuid": "e75dd00d-c847-469e-b7b2-67be02c7094c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23905", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/114002868974944312", "content": "", "creation_timestamp": "2025-02-14T15:08:50.694341Z"}, {"uuid": "10f5bedc-bb23-44ac-b16c-3dad4b5c222a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2390", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-12T13:33:28.000000Z"}, {"uuid": "7155ba21-bc5f-4920-9c5f-6969f704f4bf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-23907", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/2040", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-23907\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in closed SOCIAL.NINJA allows Stored XSS. This issue affects SOCIAL.NINJA: from n/a through 0.2.\n\ud83d\udccf Published: 2025-01-16T20:08:17.563Z\n\ud83d\udccf Modified: 2025-01-16T20:36:14.184Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/seo-meta/vulnerability/wordpress-social-ninja-plugin-0-2-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-01-16T20:55:58.000000Z"}, {"uuid": "5fc9ac5b-dded-4ceb-bfb8-e3433531f418", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2390", "type": "seen", "source": "MISP/02fb130c-7874-4693-9b66-81ed91a2e996", "content": "", "creation_timestamp": "2025-08-21T03:19:31.000000Z"}, {"uuid": "3b0fe3f3-7770-4537-ad7e-40e73d573ce7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2390", "type": "seen", "source": "https://t.me/cvedetector/20500", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2390 - Blood Bank Management System SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2390 \nPublished : March 17, 2025, 7:15 p.m. | 49\u00a0minutes ago \nDescription : A vulnerability classified as critical has been found in code-projects Blood Bank Management System 1.0. This affects an unknown part of the file /user_dashboard/add_donor.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"17 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-17T21:39:26.000000Z"}, {"uuid": "5e115e12-7f23-4cfc-85c2-cc747c3160ff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2390", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7842", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2390\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability classified as critical has been found in code-projects Blood Bank Management System 1.0. This affects an unknown part of the file /user_dashboard/add_donor.php. The manipulation leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-03-17T19:00:08.626Z\n\ud83d\udccf Modified: 2025-03-17T19:00:08.626Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.299889\n2. https://vuldb.com/?ctiid.299889\n3. https://vuldb.com/?submit.516908\n4. https://github.com/intercpt/XSS1/blob/main/SQL8.md\n5. https://code-projects.org/", "creation_timestamp": "2025-03-17T19:47:56.000000Z"}]}