{"vulnerability": "CVE-2025-2587", "sightings": [{"uuid": "07051b61-8b1a-4713-9a72-8ca4573a4ee2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25875", "type": "seen", "source": "https://t.me/cvedetector/18668", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25875 - ITSourcecode Simple ChatBox SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25875 \nPublished : Feb. 21, 2025, 6:16 p.m. | 22\u00a0minutes ago \nDescription : A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /message.php. The attack can use SQL injection to obtain sensitive data. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-21T19:46:40.000000Z"}, {"uuid": "104269db-66d3-423d-ba9d-b54d3672ac3d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25873", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lke2qgz43726", "content": "", "creation_timestamp": "2025-03-14T16:46:14.562544Z"}, {"uuid": "77fde241-a738-466c-9de0-c7875e105c23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25871", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lke2qha63u24", "content": "", "creation_timestamp": "2025-03-14T16:46:15.777773Z"}, {"uuid": "64143924-7aa1-4457-b00a-53e96624defa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2587", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lkvcp5755m2s", "content": "", "creation_timestamp": "2025-03-21T13:23:52.492647Z"}, {"uuid": "d4ae4eb4-d9db-4760-9aed-56bb714875cd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25872", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lke2qhnyoa2s", "content": "", "creation_timestamp": "2025-03-14T16:46:18.305239Z"}, {"uuid": "e9b74dda-bd6e-4033-a56c-5424a7856202", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2587", "type": "seen", "source": "MISP/3e4b778d-5810-4171-a915-f1d106684af4", "content": "", "creation_timestamp": "2025-08-11T18:27:49.000000Z"}, {"uuid": "f7c43e3f-8f84-4cac-beac-06f8dcdf59dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25876", "type": "seen", "source": "MISP/9ca82492-7deb-4197-a6f1-191e121eef96", "content": "", "creation_timestamp": "2025-08-25T13:32:04.000000Z"}, {"uuid": "362c0d3c-b26a-4288-b3fd-e63763cf72fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25875", "type": "seen", "source": "MISP/9ca82492-7deb-4197-a6f1-191e121eef96", "content": "", "creation_timestamp": "2025-08-25T13:32:04.000000Z"}, {"uuid": "13c7d524-c844-4eff-a71e-ccc64804faf8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25878", "type": "seen", "source": "https://t.me/cvedetector/18665", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25878 - ITSourcecode Simple ChatBox SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25878 \nPublished : Feb. 21, 2025, 6:16 p.m. | 22\u00a0minutes ago \nDescription : A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /del.php. The attack can use SQL injection to obtain sensitive data. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-21T19:46:35.000000Z"}, {"uuid": "893d0d1e-db0e-4f4f-836b-f3db857df7c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25877", "type": "seen", "source": "https://t.me/cvedetector/18664", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25877 - ITSourcecode Simple ChatBox SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25877 \nPublished : Feb. 21, 2025, 6:16 p.m. | 22\u00a0minutes ago \nDescription : A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /admin.php. The attack can use SQL injection to obtain sensitive data. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-21T19:46:34.000000Z"}, {"uuid": "ab611d9e-1480-46e3-8277-c98abfa1c299", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25876", "type": "seen", "source": "https://t.me/cvedetector/18663", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25876 - ITSourcecode Simple ChatBox SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25876 \nPublished : Feb. 21, 2025, 6:16 p.m. | 22\u00a0minutes ago \nDescription : A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /delete.php. The attack can use SQL injection to obtain sensitive data. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-21T19:46:33.000000Z"}, {"uuid": "9361935f-8971-4777-82f7-df8a61d5888f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2587", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/8330", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2587\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability, which was classified as critical, was found in Jinher OA C6 1.0. This affects an unknown part of the file IncentivePlanFulfillAppprove.aspx. The manipulation of the argument httpOID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-03-21T12:00:08.867Z\n\ud83d\udccf Modified: 2025-03-21T12:00:08.867Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.300567\n2. https://vuldb.com/?ctiid.300567\n3. https://vuldb.com/?submit.516025\n4. https://flowus.cn/share/75512a54-e78f-4bfb-80e7-236521b43a02?code=HC3R4E", "creation_timestamp": "2025-03-21T12:22:06.000000Z"}, {"uuid": "968fc304-2a64-42c0-a84e-91ad1829faee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25877", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4949", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25877\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /admin.php. The attack can use SQL injection to obtain sensitive data.\n\ud83d\udccf Published: 2025-02-21T00:00:00.000Z\n\ud83d\udccf Modified: 2025-02-21T18:02:55.825Z\n\ud83d\udd17 References:\n1. https://github.com/SticKManII/cve-poc/blob/main/chat-box/1/poc.md", "creation_timestamp": "2025-02-21T18:19:08.000000Z"}, {"uuid": "3a8386d4-579e-49ae-8567-9b7a3d396f54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25875", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4953", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25875\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /message.php. The attack can use SQL injection to obtain sensitive data.\n\ud83d\udccf Published: 2025-02-21T00:00:00.000Z\n\ud83d\udccf Modified: 2025-02-21T17:51:53.526Z\n\ud83d\udd17 References:\n1. https://github.com/SticKManII/cve-poc/blob/main/chat-box/4/poc.md", "creation_timestamp": "2025-02-21T18:19:12.000000Z"}, {"uuid": "2367fce6-8b4a-4e70-b55a-ffa1360d4c73", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25876", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4951", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25876\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /delete.php. The attack can use SQL injection to obtain sensitive data.\n\ud83d\udccf Published: 2025-02-21T00:00:00.000Z\n\ud83d\udccf Modified: 2025-02-21T18:01:03.709Z\n\ud83d\udd17 References:\n1. https://github.com/SticKManII/cve-poc/blob/main/chat-box/2/poc.md", "creation_timestamp": "2025-02-21T18:19:10.000000Z"}, {"uuid": "4ce106bc-99d1-4f6e-8df5-f3424c8a9cb6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25873", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/7577", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25873\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Cross Site Request Forgery vulnerability in Open Panel OpenAdmin v.0.3.4 allows a remote attacker to escalate privileges via the Change Root Password function\n\ud83d\udccf Published: 2025-03-14T00:00:00.000Z\n\ud83d\udccf Modified: 2025-03-14T15:36:02.615Z\n\ud83d\udd17 References:\n1. https://openpanel.com/docs/\n2. https://packetstorm.news/files/id/189597", "creation_timestamp": "2025-03-14T15:43:28.000000Z"}, {"uuid": "3cac2c98-502e-498b-822a-0bac3c986690", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25871", "type": "seen", "source": "https://t.me/cvedetector/20321", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25871 - Open Panel Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25871 \nPublished : March 14, 2025, 4:15 p.m. | 1\u00a0hour, 19\u00a0minutes ago \nDescription : An issue in Open Panel v.0.3.4 allows a remote attacker to escalate privileges via the Fix Permissions function \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-14T19:13:19.000000Z"}, {"uuid": "a15b7874-3e6f-455b-9fd9-d21444c7f053", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25878", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4938", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25878\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: A vulnerability was found in ITSourcecode Simple ChatBox up to 1.0. This vulnerability affects unknown code of the file /del.php. The attack can use SQL injection to obtain sensitive data.\n\ud83d\udccf Published: 2025-02-21T00:00:00.000Z\n\ud83d\udccf Modified: 2025-02-21T18:04:07.730Z\n\ud83d\udd17 References:\n1. https://github.com/SticKManII/cve-poc/blob/main/chat-box/3/poc.md", "creation_timestamp": "2025-02-21T18:18:50.000000Z"}, {"uuid": "927e9194-aa09-4803-afa5-d1c9e2f326f3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25873", "type": "seen", "source": "https://t.me/cvedetector/20320", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25873 - Open Panel OpenAdmin Cross Site Request Forgery Privilege Escalation\", \n  \"Content\": \"CVE ID : CVE-2025-25873 \nPublished : March 14, 2025, 4:15 p.m. | 1\u00a0hour, 19\u00a0minutes ago \nDescription : Cross Site Request Forgery vulnerability in Open Panel OpenAdmin v.0.3.4 allows a remote attacker to escalate privileges via the Change Root Password function \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-14T19:13:18.000000Z"}, {"uuid": "29133118-dfc6-4754-bf70-7f84cd3778dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2587", "type": "seen", "source": "https://t.me/cvedetector/20808", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-2587 - Jinher OA SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-2587 \nPublished : March 21, 2025, 12:15 p.m. | 27\u00a0minutes ago \nDescription : A vulnerability, which was classified as critical, was found in Jinher OA C6 1.0. This affects an unknown part of the file IncentivePlanFulfillAppprove.aspx. The manipulation of the argument httpOID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-21T14:18:23.000000Z"}, {"uuid": "74ee28ee-b339-4c9c-aad9-ce656880f598", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25872", "type": "seen", "source": "https://t.me/cvedetector/20319", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25872 - Open Panel Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25872 \nPublished : March 14, 2025, 4:15 p.m. | 1\u00a0hour, 19\u00a0minutes ago \nDescription : An issue in Open Panel v.0.3.4 allows a remote attacker to escalate privileges via the Fix Permissions function \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"14 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-14T19:13:17.000000Z"}, {"uuid": "681fff22-f90c-43bc-b39f-929dc86bf3aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25872", "type": "published-proof-of-concept", "source": "Telegram/fyjZX1DQJqp7cgGIoapQDmFwfZmIieEA6Oc4BrHNu7TMDmQ", "content": "", "creation_timestamp": "2025-03-06T20:00:05.000000Z"}]}