{"vulnerability": "cve-2025-0944", "sightings": [{"uuid": "9485ee78-5f41-437b-a1c1-3113e32fda2b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lh4lufjtfq2i", "content": "", "creation_timestamp": "2025-02-01T13:15:41.784952Z"}, {"uuid": "ff550d61-7508-4b67-b547-c0f76bc7b9f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lh4tsbb3jc2e", "content": "", "creation_timestamp": "2025-02-01T15:37:40.824308Z"}, {"uuid": "9f320b3e-7173-4861-96bc-217dc4b547ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "seen", "source": "https://bsky.app/profile/campuscodi.risky.biz/post/3lpr5xkryvc26", "content": "", "creation_timestamp": "2025-05-22T12:54:25.159165Z"}, {"uuid": "49558f96-71d1-45f1-a379-6f1d12e7da0a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lqbnqbwyos2p", "content": "", "creation_timestamp": "2025-05-29T02:19:14.826180Z"}, {"uuid": "e7aa5735-ccfb-4f7f-ac16-aa557261a815", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "seen", "source": "https://bsky.app/profile/hackingne.ws/post/3lprqqedrr72k", "content": "", "creation_timestamp": "2025-05-22T18:30:22.543966Z"}, {"uuid": "fd0f3ae0-63eb-4a99-a420-4ace1d9a9963", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "seen", "source": "https://thehackernews.com/2025/05/chinese-hackers-exploit-trimble.html", "content": "", "creation_timestamp": "2025-05-22T13:06:00.000000Z"}, {"uuid": "c273c492-080a-40db-a7f8-4972fe9bd463", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lpskurx42h2r", "content": "", "creation_timestamp": "2025-05-23T02:18:08.638494Z"}, {"uuid": "360a3af6-5976-4f45-9169-e17252f8e255", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3lq75bi67uf2w", "content": "", "creation_timestamp": "2025-05-28T02:19:18.843529Z"}, {"uuid": "12b6701b-9b21-4e9d-8d09-a6408e909a6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "seen", "source": "MISP/45d365a8-7e94-4539-9e6b-cf6cf9198fca", "content": "", "creation_timestamp": "2025-08-22T21:12:52.000000Z"}, {"uuid": "bfe87268-2d43-45d7-9689-48beb9de5083", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "seen", "source": "https://threatintel.cc/2025/05/23/uat-exploits-cityworks-zeroday-vulnerability.html", "content": "", "creation_timestamp": "2025-05-23T09:38:09.000000Z"}, {"uuid": "af3c1a74-dc83-4942-a4e3-ebdfd2a982a4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "exploited", "source": "Telegram/yt6XjUg0EAqmHSotcj2CEbkUY4Jww3oBwxInuAuM_7KS4w", "content": "", "creation_timestamp": "2025-05-22T19:00:39.000000Z"}, {"uuid": "19d8de55-3f85-47c5-8908-2612d23bd76d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3771", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-0944\n\ud83d\udd25 CVSS Score: 6.2 (CVSS_V3)\n\ud83d\udd39 Description: A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file customerview.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-02-01T15:32:58Z\n\ud83d\udccf Modified: 2025-02-01T15:32:58Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2025-0944\n2. https://github.com/magic2353112890/cve/issues/7\n3. https://itsourcecode.com\n4. https://vuldb.com/?ctiid.294299\n5. https://vuldb.com/?id.294299", "creation_timestamp": "2025-02-01T16:16:54.000000Z"}, {"uuid": "73f57a06-256e-4a99-af4a-adc1958d7985", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/3765", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-0944\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2025-02-01T13:15:23.027\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://github.com/magic2353112890/cve/issues/7\n2. https://itsourcecode.com/\n3. https://vuldb.com/?ctiid.294299\n4. https://vuldb.com/?id.294299", "creation_timestamp": "2025-02-01T15:25:37.000000Z"}, {"uuid": "8a2e2fd4-f740-455f-b94e-26bf5a798495", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "exploited", "source": "https://t.me/ITWirklaerenauf/412", "content": "\ud83d\udc09 Chinesische Hacker nutzen Cityworks-Schwachstelle\n\n\ud83c\udfaf Angriff auf US-Kommunen\nEine chinesische Hackergruppe nutzte eine Zero-Day-Schwachstelle (CVE-2025-0944) in der Software Cityworks, um Malware in die Netzwerke lokaler US-Beh\u00f6rden und Versorgungsunternehmen einzuschleusen.\n\n\ud83c\udfaf Ziel: langfristiger Zugriff auf kritische Infrastrukturen.\n\n\ud83d\udcc6 Die Angriffe begannen bereits im Januar 2025. Der Hersteller hat mittlerweile ein Sicherheitsupdate ver\u00f6ffentlicht.\n\n\ud83d\udcce Quelle:\nhttps://statescoop.com/chinese-hackers-cityworks-vulnerability-malware-2025\n\n\ud83e\udde0 Technik verstehen. Alternativen zeigen. Bewusstsein schaffen.\n\nIT\ud83d\udcf1\ud83d\udcbb WIR KL\u00c4REN AUF \u2013 Alternativen f\u00fcr eine freie digitale Zukunft!\n\n\ud83d\udd17 Kanal beitreten: @ITWirklaerenauf\n\n\ud83d\udc9a Non-Profit-Aufkl\u00e4rung \u00fcber alternative IT-L\u00f6sungen und den verantwortungsbewussten Umgang mit Technologie.\n\n\ud83d\udce3 Unsere Mission: Aufkl\u00e4rung \u00fcber Datenschutz, alternative Betriebssysteme, sichere Kommunikation und digitale Unabh\u00e4ngigkeit.\n\n#ZeroDay #Cyberattacke #ChinaHacker #Cityworks #Malware #ITWirKl\u00e4renAuf #ITSicherheit", "creation_timestamp": "2025-06-23T11:41:47.000000Z"}, {"uuid": "f163cc55-b5cd-4061-b042-2eb55772b449", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-0944", "type": "seen", "source": "https://t.me/cvedetector/17018", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-0944 - Tailoring Management System SQL Injection\", \n  \"Content\": \"CVE ID : CVE-2025-0944 \nPublished : Feb. 1, 2025, 1:15 p.m. | 1\u00a0hour, 27\u00a0minutes ago \nDescription : A vulnerability was found in itsourcecode Tailoring Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file customerview.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. \nSeverity: 6.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"01 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-01T16:29:02.000000Z"}]}