{"vulnerability": "CVE-2025-6254", "sightings": [{"uuid": "4bdf74f4-a886-4f6c-a851-cdf505b2aec2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-6254", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mnwkntijit26", "content": "\ud83d\udd34 CVE-2025-6254 - Critical (9.8)\n\nThe Doctreat Core plugin for WordPress is vulnerable to Privilege Escalation in all versions up t...\n\nhttps://www.thehackerwire.com/vulnerability/CVE-2025-6254/\n\n#infosec #cybersecurity #CVE #vulnerability #security #patchstack", "creation_timestamp": "2026-06-10T11:00:43.911760Z"}, {"uuid": "870ae2c4-684c-4a23-8223-73f75e54aebb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62549", "type": "seen", "source": "https://www.thezdi.com/blog/2025/12/9/the-december-2025-security-update-review", "content": "", "creation_timestamp": "2025-12-09T17:29:16.000000Z"}, {"uuid": "4da87e2d-f192-474e-9907-38ed47874311", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-62549", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0383", "content": "", "creation_timestamp": "2025-12-09T17:39:18.000000Z"}, {"uuid": "6f29ffe1-64e8-41d6-aa05-01edd745aba9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-6254", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mnwlbd3rzn2c", "content": "CVE-2025-6254 - Doctreat Core\nCVE ID : CVE-2025-6254\n \n Published : June 10, 2026, 10:16 a.m. | 22\u00a0minutes ago\n \n Description : The Doctreat Core plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.6.8. This is due to the doctreat...", "creation_timestamp": "2026-06-10T11:11:36.743130Z"}, {"uuid": "3a9d34e5-f704-4975-972c-68e869baa20e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-6254", "type": "seen", "source": "https://bsky.app/profile/pulse-wp.com/post/3mnwnycpcxi2t", "content": "Anyone visiting your site can register as admin. CVE-2025-6254. Doctreat Core \u22641.6.8 doesn't validate user roles on signup. 9.8/10 critical. Update now. Scan: pulse-wp.com\n#WordPress #AccessControl #CyberSecurity", "creation_timestamp": "2026-06-10T12:00:15.685497Z"}]}