{"vulnerability": "CVE-2025-3156", "sightings": [{"uuid": "a1ebeb38-3334-4a3d-9736-3c9fbab931d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31563", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llrxufk3xv2o", "content": "", "creation_timestamp": "2025-04-01T22:57:14.842826Z"}, {"uuid": "13190ab8-796a-4271-ae40-d69d08ae9032", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31568", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llrxuemgrj2s", "content": "", "creation_timestamp": "2025-04-01T22:57:07.906101Z"}, {"uuid": "63f79b80-c7c7-42fc-bb6b-073b4cb7a609", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31561", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llrxuesacn23", "content": "", "creation_timestamp": "2025-04-01T22:57:09.697415Z"}, {"uuid": "9a5279ec-5fd7-41aa-89f9-e79cbafde12d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31564", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llrxugbno326", "content": "", "creation_timestamp": "2025-04-01T22:57:18.761333Z"}, {"uuid": "9b8810c3-be79-4f5c-83cd-92e2e52a7849", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31561", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114265379364017192", "content": "", "creation_timestamp": "2025-04-01T23:48:42.553208Z"}, {"uuid": "2c5ccd8b-23d4-4fd5-bb49-e883e6903052", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31561", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114265379364017192", "content": "", "creation_timestamp": "2025-04-01T23:48:42.551959Z"}, {"uuid": "77d48fb5-3486-4689-a39b-c0bb4764544d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31564", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114265379449386478", "content": "", "creation_timestamp": "2025-04-01T23:48:42.856526Z"}, {"uuid": "fba4e142-72d9-467f-8060-5fdcb65c657a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31564", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114265379449386478", "content": "", "creation_timestamp": "2025-04-01T23:48:42.869256Z"}, {"uuid": "f4f93079-0d7d-4db5-afae-b1fdcd0b51c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31560", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3llrxueiuqr2j", "content": "", "creation_timestamp": "2025-04-01T22:57:07.346141Z"}, {"uuid": "aeec23f6-d1a8-49a1-8319-a40db6d3d066", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3156", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ltb4azsqfi2a", "content": "", "creation_timestamp": "2025-07-06T01:22:06.699395Z"}, {"uuid": "878db8dd-675e-4f33-8f04-e1ffdf593058", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31564", "type": "seen", "source": "https://t.me/cvedetector/21820", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-31564 - Aitool Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT) SQL Injection Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-31564 \nPublished : April 1, 2025, 9:15 p.m. | 27\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in aitool Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One allows Blind SQL Injection. This issue affects Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One: from n/a through 2.1.7. \nSeverity: 8.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-01T23:56:21.000000Z"}, {"uuid": "c284fdf4-38f2-4cfe-83a4-2dd9e2abb55a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31560", "type": "seen", "source": "Telegram/L0cFcm6S1F1svW4k55Pq2JGBMr8SGws0gJeKBbgjH-EsWCM", "content": "", "creation_timestamp": "2026-04-01T21:29:45.000000Z"}, {"uuid": "843b392e-2651-491b-a5c4-21989c53080f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31562", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/9667", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-31562\n\ud83d\udd25 CVSS Score: 6.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Aphotrax Uptime Robot Plugin for WordPress allows DOM-Based XSS. This issue affects Uptime Robot Plugin for WordPress: from n/a through 2.3.\n\ud83d\udccf Published: 2025-03-31T12:55:18.631Z\n\ud83d\udccf Modified: 2025-03-31T13:55:44.300Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/uptime-robot-monitor/vulnerability/wordpress-uptime-robot-plugin-for-wordpress-plugin-2-3-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-03-31T14:32:19.000000Z"}, {"uuid": "7b10bc3d-17bd-4a93-a877-2578dfb42509", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31566", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/9668", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-31566\n\ud83d\udd25 CVSS Score: 7.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Cross-Site Request Forgery (CSRF) vulnerability in riosisgroup Rio Video Gallery allows Stored XSS. This issue affects Rio Video Gallery: from n/a through 2.3.6.\n\ud83d\udccf Published: 2025-03-31T12:55:19.202Z\n\ud83d\udccf Modified: 2025-03-31T13:55:17.204Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/rio-video-gallery/vulnerability/wordpress-rio-video-gallery-plugin-2-3-6-csrf-to-stored-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-03-31T14:32:20.000000Z"}, {"uuid": "941f70ca-e9c0-409a-9e2b-c7272e14c6fa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31563", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10092", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-31563\n\ud83d\udd25 CVSS Score: 7.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vimal Kava AI Search Bar allows Stored XSS. This issue affects AI Search Bar: from n/a through 1.3.\n\ud83d\udccf Published: 2025-04-01T20:58:13.173Z\n\ud83d\udccf Modified: 2025-04-02T14:20:35.452Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/open-ai-search-bar/vulnerability/wordpress-ai-search-bar-plugin-1-3-cross-site-scripting-xss-vulnerability?_s_id=cve", "creation_timestamp": "2025-04-02T14:34:13.000000Z"}, {"uuid": "e7d345eb-7cde-47bb-b08b-20d61dff87ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31561", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/10091", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-31561\n\ud83d\udd25 CVSS Score: 8.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L)\n\ud83d\udd39 Description: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in M. Tuhin Ultimate Push Notifications allows SQL Injection. This issue affects Ultimate Push Notifications: from n/a through 1.1.8.\n\ud83d\udccf Published: 2025-04-01T20:58:13.000Z\n\ud83d\udccf Modified: 2025-04-02T14:20:44.170Z\n\ud83d\udd17 References:\n1. https://patchstack.com/database/wordpress/plugin/ultimate-push-notifications/vulnerability/wordpress-ultimate-push-notifications-plugin-1-1-8-sql-injection-vulnerability?_s_id=cve", "creation_timestamp": "2025-04-02T14:34:12.000000Z"}, {"uuid": "3997f4fd-c8ba-48b9-be0f-21b65fa34f78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-31560", "type": "seen", "source": "https://bsky.app/profile/securitycipher.bsky.social/post/3lwg3pbrwih27", "content": "", "creation_timestamp": "2025-08-15T05:11:04.439857Z"}, {"uuid": "21632196-de0d-47d8-96fb-7850fbf1e075", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31560", "type": "seen", "source": "https://t.me/cvedetector/21819", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-31560 - Dimitri Grassi Salon Booking System Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-31560 \nPublished : April 1, 2025, 9:15 p.m. | 27\u00a0minutes ago \nDescription : Incorrect Privilege Assignment vulnerability in Dimitri Grassi Salon booking system allows Privilege Escalation. This issue affects Salon booking system: from n/a through 10.11. \nSeverity: 7.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-01T23:56:17.000000Z"}, {"uuid": "288679f9-2cbe-4f4a-a52c-58cb9a40a58d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31568", "type": "seen", "source": "https://t.me/cvedetector/21816", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-31568 - Wiredminds LeadLab Cross-site Scripting\", \n  \"Content\": \"CVE ID : CVE-2025-31568 \nPublished : April 1, 2025, 9:15 p.m. | 27\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in wiredmindshelp LeadLab by wiredminds allows Reflected XSS. This issue affects LeadLab by wiredminds: from n/a through 1.3. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-01T23:56:15.000000Z"}, {"uuid": "8925979a-3035-45d8-8579-d32647cb0dd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31563", "type": "seen", "source": "https://t.me/cvedetector/21815", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-31563 - Vimal Kava AI Search Bar Cross-site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2025-31563 \nPublished : April 1, 2025, 9:15 p.m. | 27\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Vimal Kava AI Search Bar allows Stored XSS. This issue affects AI Search Bar: from n/a through 1.3. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-01T23:56:14.000000Z"}, {"uuid": "db6f4dd3-7dc1-4490-a393-de45df77f272", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-31561", "type": "seen", "source": "https://t.me/cvedetector/21814", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-31561 - M. Tuhin Ultimate Push Notifications SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2025-31561 \nPublished : April 1, 2025, 9:15 p.m. | 27\u00a0minutes ago \nDescription : Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in M. Tuhin Ultimate Push Notifications allows SQL Injection. This issue affects Ultimate Push Notifications: from n/a through 1.1.8. \nSeverity: 8.5 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Apr 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-01T23:56:10.000000Z"}]}