{"vulnerability": "CVE-2025-58434", "sightings": [{"uuid": "69444092-0326-46d7-bfcd-a90f8b739729", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-58434", "type": "seen", "source": "https://bsky.app/profile/offseq.bsky.social/post/3lyohwndubm2t", "content": "", "creation_timestamp": "2025-09-13T00:01:35.995055Z"}, {"uuid": "99d10cdc-42bc-42cb-b6e0-55d1abe1daa6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58434", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lyv3ijo3ga2k", "content": "", "creation_timestamp": "2025-09-15T15:07:34.819584Z"}, {"uuid": "805e3f43-3506-4432-b97e-854e8ed922af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58434", "type": "seen", "source": "https://bsky.app/profile/crowdcyber.bsky.social/post/3lytr4ci2wx22", "content": "", "creation_timestamp": "2025-09-15T02:29:07.480514Z"}, {"uuid": "93da63e4-7eaa-4396-bfc3-5dec61a94d26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-58434", "type": "seen", "source": "https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3lyupvsm7mdb2", "content": "", "creation_timestamp": "2025-09-15T11:40:22.121225Z"}, {"uuid": "d205b022-970d-439c-a8ea-31bd0cdee606", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58434", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3lyy7ruke4o2m", "content": "", "creation_timestamp": "2025-09-16T21:02:32.947418Z"}, {"uuid": "86cfd18c-3033-4aaf-a12d-8531d848712f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58434", "type": "published-proof-of-concept", "source": "Telegram/UcOXFA8nSOttq6tnEv5GYCOJTlyoQN894TbAmd-Usu-nlPU", "content": "", "creation_timestamp": "2026-04-22T15:00:07.000000Z"}, {"uuid": "91d64d1d-7e97-46f5-aac1-44c010016ca6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58434", "type": "published-proof-of-concept", "source": "Telegram/1wDj6WHUcuNjYA-jwlhpoNrQKiJqHyxAchFJ4VwFNmcREoc", "content": "", "creation_timestamp": "2026-04-12T09:00:12.000000Z"}, {"uuid": "184dd2c2-7da4-4d55-919b-6280e232cb76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58434", "type": "published-proof-of-concept", "source": "Telegram/S964UnaAzc4FW7CZCUbAm7wNqkztcWapRmtGqRf9U9sXCaA", "content": "", "creation_timestamp": "2026-04-12T03:00:07.000000Z"}, {"uuid": "097aa4e6-5890-4256-81f3-3d22a007c041", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58434", "type": "published-proof-of-concept", "source": "https://github.com/google/tsunami-security-scanner-plugins/tree/master/community/detectors/flowise_cve_2025_58434", "content": "", "creation_timestamp": "2025-09-18T11:02:29.000000Z"}, {"uuid": "f20950c3-d9e2-4248-ab37-de8fcb93cc94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58434", "type": "published-proof-of-concept", "source": "Telegram/jqsHB6FIdeMNMlYJLaE-SWbBIQ7X4SKPFQvaPULFC7d8_bM", "content": "", "creation_timestamp": "2026-04-14T15:00:07.000000Z"}, {"uuid": "86850147-7fb2-42ed-9fbc-d5d22da7c6af", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58434", "type": "published-proof-of-concept", "source": "Telegram/UHDH5Dy8dLbKDvrSUjbHqZq8jdYbFApOrWWgQ31t4VSl0Kk", "content": "", "creation_timestamp": "2026-04-20T15:00:07.000000Z"}, {"uuid": "95bb18c0-7a5c-4fea-ac23-cde8dc9b056d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58434", "type": "seen", "source": "Telegram/cnT3gNjT1c8jZyCBUN7A77QIJYcKya_18WEnlQRaj4tp4YI", "content": "", "creation_timestamp": "2026-05-10T15:00:08.000000Z"}, {"uuid": "e024b824-bb85-4df1-b2a6-2beabb96d4c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58434", "type": "published-proof-of-concept", "source": "Telegram/M2s3PphtTCD9brru-X6QMyPesFMqQlhfbVnnLWpusEfiV5g", "content": "", "creation_timestamp": "2026-05-16T21:00:04.000000Z"}, {"uuid": "9ed320be-495d-495c-a53f-b03a5439c430", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-58434", "type": "published-proof-of-concept", "source": "https://github.com/FlowiseAI/Flowise/security/advisories/GHSA-wgpv-6j63-x5ph", "content": "", "creation_timestamp": "2025-09-12T17:22:29.000000Z"}, {"uuid": "4ba43729-41a8-473d-ab46-f7e18d131de1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58434", "type": "seen", "source": "Telegram/vTjZhASXhwWeDqYuxnAyADQ7eMJlo90DyIvt3LBPQV5_k50", "content": "", "creation_timestamp": "2026-06-01T15:00:07.000000Z"}, {"uuid": "3c4b50cf-1435-4502-8cee-b71111ee7eac", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58434", "type": "seen", "source": "https://t.me/GithubRedTeam/86822", "content": "\ud83d\udea8 GitHub \u76d1\u63a7\u6d88\u606f\u63d0\u9192\n\n\ud83d\udea8 \u53d1\u73b0\u5173\u952e\u8bcd\uff1a #RCE #CVE\n\n\ud83d\udce6 \u9879\u76ee\u540d\u79f0\uff1a HackTheBox-Silentium\n\ud83d\udc64 \u9879\u76ee\u4f5c\u8005\uff1a SuriyaBoon\n\ud83d\udee0 \u5f00\u53d1\u8bed\u8a00\uff1a Unknown\n\u2b50 Star\u6570\u91cf\uff1a 0  |  \ud83c\udf74 Fork\u6570\u91cf\uff1a 0\n\ud83d\udcc5 \u66f4\u65b0\u65f6\u95f4\uff1a 2026-06-01 11:10:37\n\n\ud83d\udcdd \u9879\u76ee\u63cf\u8ff0\uff1a\nFull walkthrough of HackTheBox \"Silentium\" (Medium/Linux). Chains three CVEs: CVE-2025-58434 leaks a Flowise password reset token unauthenticated, enabling account takeover; CVE-2025-59528 achieves RCE via unsanitized CustomMCP node; env vars expose SSH credentials for lateral movement. CVE-2025-8110 exploits Gogs symlink write as root to escalate.\n\n\ud83d\udd17 \u70b9\u51fb\u8bbf\u95ee\u9879\u76ee\u5730\u5740", "creation_timestamp": "2026-06-01T12:08:23.000000Z"}]}