{"vulnerability": "cve-2025-1402", "sightings": [{"uuid": "8844625b-898a-4be4-a198-648be74a85e3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14027", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-26-029-03", "content": "", "creation_timestamp": "2026-01-29T11:00:00.000000Z"}, {"uuid": "36c10431-8f3e-4b1b-91fe-88a8883eaf28", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1402", "type": "seen", "source": "MISP/9ca82492-7deb-4197-a6f1-191e121eef96", "content": "", "creation_timestamp": "2025-08-25T13:32:05.000000Z"}, {"uuid": "aa014807-e8bf-4930-b69a-e3c7e014d72f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1402", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lip4jgqhk52v", "content": "", "creation_timestamp": "2025-02-21T15:26:54.596267Z"}, {"uuid": "91f49be0-aa3a-4e76-93ff-6efd63f501c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14029", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mcm4qphdfr2h", "content": "", "creation_timestamp": "2026-01-17T07:48:01.851355Z"}, {"uuid": "7797767b-c229-4676-b64f-94a027b057ef", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14026", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mbrgiuobp52u", "content": "", "creation_timestamp": "2026-01-06T17:00:44.333678Z"}, {"uuid": "86f94f2d-d52d-42f3-9988-4bc4c0938045", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14026", "type": "seen", "source": "https://bsky.app/profile/cyberdudebivash.bsky.social/post/3mbsk6azcs22p", "content": "", "creation_timestamp": "2026-01-07T03:39:08.282579Z"}, {"uuid": "08193491-ceda-4fe9-ad02-77e0fb32dc6f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14026", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3mbsup65yxs2f", "content": "", "creation_timestamp": "2026-01-07T06:47:26.503764Z"}, {"uuid": "51a2c33e-23ea-4f11-a993-18871a0768bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14025", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mbwaqmb5rv2v", "content": "", "creation_timestamp": "2026-01-08T15:00:59.566135Z"}, {"uuid": "6d49807e-12dc-4515-b5eb-5fc10ece5834", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14025", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mbwarkscob2a", "content": "", "creation_timestamp": "2026-01-08T15:01:31.558724Z"}, {"uuid": "1d92599e-c797-4e8b-9938-afd3a4a94552", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14025", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/115860137463758059", "content": "", "creation_timestamp": "2026-01-08T15:16:38.993408Z"}, {"uuid": "ac32a09c-5f23-44e9-aba6-03213e678312", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14025", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mbwc6pus7n2o", "content": "", "creation_timestamp": "2026-01-08T15:26:46.412681Z"}, {"uuid": "03eca7a5-bbdd-49e5-b1c1-f445cd15704a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14028", "type": "seen", "source": "https://gist.github.com/Darkcrai86/965a10071ba3b4d2641cfce790591db8", "content": "", "creation_timestamp": "2026-01-07T11:24:00.000000Z"}, {"uuid": "e50c61f8-70b6-4ccf-9881-2f253d20be39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14027", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mcuijtvsyy2h", "content": "", "creation_timestamp": "2026-01-20T15:40:14.743551Z"}, {"uuid": "9273d57b-3845-4c90-ad51-1d7bff95a492", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14027", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3mcvmpbrrar2g", "content": "", "creation_timestamp": "2026-01-21T02:27:31.707663Z"}, {"uuid": "5f1c0b69-441c-4f75-b24b-ac6ee455ab88", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1402", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/4876", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-1402\n\ud83d\udd25 CVSS Score: 5.3 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)\n\ud83d\udd39 Description: The Event Tickets and Registration plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'ajax_ticket_delete' function in all versions up to, and including, 5.19.1.1. This makes it possible for authenticated attackers, with Contributor-level access and above, to delete arbitrary Attendee tickets.\n\ud83d\udccf Published: 2025-02-21T11:09:34.845Z\n\ud83d\udccf Modified: 2025-02-21T11:09:34.845Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/dbd838b6-7792-4378-8969-a70c6e16ff6a?source=cve\n2. https://plugins.trac.wordpress.org/browser/event-tickets/tags/5.18.1/src/Tribe/Assets.php#L202\n3. https://plugins.trac.wordpress.org/browser/event-tickets/tags/5.18.1/src/Tribe/Metabox.php#L30\n4. https://plugins.trac.wordpress.org/browser/event-tickets/tags/5.18.1/src/Tribe/Metabox.php#L490\n5. https://wordfence.freshdesk.com/a/tickets/375051", "creation_timestamp": "2025-02-21T11:18:25.000000Z"}, {"uuid": "064ce844-42d8-434c-8d6b-315299203098", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14022", "type": "seen", "source": "Telegram/S7e73uQGRz2g4329uFgFshdmbcpucfN1UlxU6fp487LZwx8", "content": "", "creation_timestamp": "2026-01-07T17:07:51.000000Z"}, {"uuid": "b79b306d-6afc-4c38-8061-4ebb1419af3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14026", "type": "published-proof-of-concept", "source": "Telegram/41Hy7RdNU3dG8c4Hrn_g57s_ADSPxLk6E5fwLGnLc21E8KE", "content": "", "creation_timestamp": "2026-01-06T17:06:46.000000Z"}, {"uuid": "f58c0390-27c1-4750-a4b0-a1bc564cb3de", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14026", "type": "seen", "source": "Telegram/bqaQ-baLcjpx1IWkdGH2aMiG0fNMlaPjyraV9dUhVjnJnO4", "content": "", "creation_timestamp": "2026-01-06T17:06:30.000000Z"}, {"uuid": "6a8ac9f0-d3a4-45fa-afbc-e96e1b7aad32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1402", "type": "seen", "source": "https://t.me/cvedetector/18653", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-1402 - WordPress Event Tickets and Registration Unauthenticated Data Deletion Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-1402 \nPublished : Feb. 21, 2025, 12:15 p.m. | 2\u00a0hours, 10\u00a0minutes ago \nDescription : The Event Tickets and Registration plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'ajax_ticket_delete' function in all versions up to, and including, 5.19.1.1. This makes it possible for authenticated attackers, with Contributor-level access and above, to delete arbitrary Attendee tickets. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"21 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-21T15:35:57.000000Z"}, {"uuid": "ee159a68-f7aa-4d50-8826-29190240f591", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-14025", "type": "published-proof-of-concept", "source": "Telegram/uxxdzZqKy2gVHqKwUzSTJZodHF1E_0u6px0vr0T-scLHYls", "content": "", "creation_timestamp": "2026-01-08T15:03:50.000000Z"}]}