{"vulnerability": "cve-2025-2524", "sightings": [{"uuid": "a4f415a0-fef1-41ef-93f3-bac0a882a03b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25246", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/113953250081835624", "content": "", "creation_timestamp": "2025-02-05T20:50:06.470060Z"}, {"uuid": "22f957f6-f60f-47b6-9ec4-db9f63b8ac08", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25246", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhg4lw3ons2z", "content": "", "creation_timestamp": "2025-02-05T08:09:09.766346Z"}, {"uuid": "fced61b9-945a-4b9a-8bbe-80a49ecd702f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25246", "type": "seen", "source": "https://infosec.exchange/users/wdormann/statuses/113951565325340606", "content": "", "creation_timestamp": "2025-02-05T13:41:39.206963Z"}, {"uuid": "98941ff2-8941-4ecb-85c4-1aceedfbdda9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25242", "type": "seen", "source": "https://bsky.app/profile/redteamnews.bsky.social/post/3ll5g72me7f26", "content": "", "creation_timestamp": "2025-03-24T18:47:43.397187Z"}, {"uuid": "8f640b4b-f13c-49eb-8270-3c529068b56c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25246", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113949465977567561", "content": "", "creation_timestamp": "2025-02-05T04:47:45.717279Z"}, {"uuid": "bcf6e962-e23a-4210-9825-6d419111e586", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25246", "type": "seen", "source": "https://bsky.app/profile/tmjintel.bsky.social/post/3lhoqsj2f5v2b", "content": "", "creation_timestamp": "2025-02-08T18:32:03.320394Z"}, {"uuid": "da13f3fe-61a1-4ffe-97a7-d430f8e04269", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25246", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhfsvyal5g2p", "content": "", "creation_timestamp": "2025-02-05T05:15:48.952540Z"}, {"uuid": "d7ac0b76-0443-4a9e-ad2a-ef981e07e0b2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25246", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113949941146080790", "content": "", "creation_timestamp": "2025-02-05T06:48:37.584117Z"}, {"uuid": "80038b6e-5bb2-435e-a483-9af1e4878d8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25243", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/113982969811104687", "content": "", "creation_timestamp": "2025-02-11T02:48:14.469513Z"}, {"uuid": "f512436f-217d-4708-9c0f-2e08f9495be4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25247", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3lhskexvqmu2y", "content": "", "creation_timestamp": "2025-02-10T06:47:44.768184Z"}, {"uuid": "b8106c84-7362-41ff-8319-3a67c5fee30a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25247", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113979337853157909", "content": "", "creation_timestamp": "2025-02-10T11:24:34.261908Z"}, {"uuid": "0a0a37b1-e33f-4faf-9ad7-b28f13f1c614", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25247", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lht4qhsler22", "content": "", "creation_timestamp": "2025-02-10T12:16:18.324674Z"}, {"uuid": "958eb04d-25c1-44e7-8734-24766a529d69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25247", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lhtd3d5do32f", "content": "", "creation_timestamp": "2025-02-10T14:09:45.521716Z"}, {"uuid": "dc716012-829f-490c-a13f-5b9da0224793", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25246", "type": "seen", "source": "https://bsky.app/profile/leekthehack.bsky.social/post/3lhtg3wpxp22o", "content": "", "creation_timestamp": "2025-02-10T15:03:48.353294Z"}, {"uuid": "55614da9-8b5c-478b-b34c-8ac69823bccf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25243", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhuidjjek42i", "content": "", "creation_timestamp": "2025-02-11T01:16:28.777696Z"}, {"uuid": "c0af25c0-ca41-4697-af39-f06c1b8a8073", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25241", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3lhuidhelsq2o", "content": "", "creation_timestamp": "2025-02-11T01:16:25.776818Z"}, {"uuid": "14244c48-739b-486d-958c-dee81f4cd159", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25241", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113982706822692310", "content": "", "creation_timestamp": "2025-02-11T01:41:20.895190Z"}, {"uuid": "e4b25686-67c3-40c9-be9c-22bd54200613", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25243", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113982765819276646", "content": "", "creation_timestamp": "2025-02-11T01:56:20.908832Z"}, {"uuid": "57f35991-44a4-4607-86e0-b3454466a8be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25246", "type": "seen", "source": "https://bsky.app/profile/bolhasec.com/post/3lianzgyusy2i", "content": "", "creation_timestamp": "2025-02-15T21:30:09.678951Z"}, {"uuid": "f7267cc0-e48b-4940-bc87-d82f6d9f7c00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25242", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3lk2ytj7eij2o", "content": "", "creation_timestamp": "2025-03-11T02:18:07.618331Z"}, {"uuid": "4785560e-1e1c-4f9b-bf49-4c38481d1679", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2025-25246", "type": "seen", "source": "https://nvd.nist.gov/vuln/detail/CVE-2025-25246", "content": "", "creation_timestamp": "2025-02-10T18:04:50.373411Z"}, {"uuid": "a4d43d44-e9bc-466a-a7c2-c4ff1100ea62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25244", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lk3625v7l52s", "content": "", "creation_timestamp": "2025-03-11T03:51:19.008569Z"}, {"uuid": "8716f9c0-612d-4c6e-b4ad-8dce01977df6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25242", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lk3626446q2n", "content": "", "creation_timestamp": "2025-03-11T03:51:20.143368Z"}, {"uuid": "168acee9-fab6-47bc-b293-5930493f8554", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25249", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3mce6txmaok2q", "content": "", "creation_timestamp": "2026-01-14T04:04:20.660285Z"}, {"uuid": "fdf66551-1d72-4ac4-9330-52e434e10068", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25249", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mcd34sceo22g", "content": "", "creation_timestamp": "2026-01-13T17:25:04.108441Z"}, {"uuid": "b67006f2-09af-4de0-bd94-dca85b8e8751", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25249", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mcd3qaek542y", "content": "", "creation_timestamp": "2026-01-13T17:35:54.462141Z"}, {"uuid": "d3f37399-6961-4b43-99c9-e206ccec9766", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2025-25249", "type": "seen", "source": "https://gist.github.com/Darkcrai86/45f4c256c8074121c8876b78492ca689", "content": "", "creation_timestamp": "2026-01-14T08:27:19.000000Z"}, {"uuid": "ece9b6cc-9264-4625-95f7-34c334484b21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25249", "type": "seen", "source": "https://bsky.app/profile/opsmatters.com/post/3mciws5svuj2e", "content": "", "creation_timestamp": "2026-01-16T01:23:29.817794Z"}, {"uuid": "7827af80-9a2e-47ff-a34f-fc4576426c80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25249", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mcokosuzis2k", "content": "", "creation_timestamp": "2026-01-18T07:02:52.238110Z"}, {"uuid": "46f7864c-0ebc-426d-94f4-58905801787e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25249", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mcolervvvc2k", "content": "", "creation_timestamp": "2026-01-18T07:15:10.499183Z"}, {"uuid": "e01929d7-d65f-4794-a71d-5e52ec22294b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25243", "type": "seen", "source": "https://t.me/cvedetector/17617", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25243 - SAP Supplier Relationship Management (SRM) File Disclosure\", \n  \"Content\": \"CVE ID : CVE-2025-25243 \nPublished : Feb. 11, 2025, 1:15 a.m. | 31\u00a0minutes ago \nDescription : SAP Supplier Relationship Management (Master Data Management Catalog) allows an unauthenticated attacker to use a publicly available servlet to download an arbitrary file over the network without any user interaction. This can reveal highly sensitive information with no impact to integrity or availability. \nSeverity: 8.6 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-11T03:07:42.000000Z"}, {"uuid": "d0ed5826-2930-4002-9bb4-b4e3978e1352", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "af0120d0-3dac-4a6a-974b-a9f33d2a9846", "vulnerability": "CVE-2025-25246", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/52db1232-3e47-4bf4-a6ed-a4b863f96ab9", "content": "", "creation_timestamp": "2025-02-10T18:09:14.246689Z"}, {"uuid": "9bd64d31-4cea-47b8-aa06-1f61ccafe3f7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25244", "type": "seen", "source": "https://t.me/cvedetector/20024", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25244 - SAP Business Warehouse Authorization Bypass\", \n  \"Content\": \"CVE ID : CVE-2025-25244 \nPublished : March 11, 2025, 1:15 a.m. | 24\u00a0minutes ago \nDescription : SAP Business Warehouse (Process Chains) allows an attacker to manipulate the process execution due to missing authorization check. An attacker with display authorization for the process chain object could set one or all processes to be skipped. This means corresponding activities, such as data loading, activation, or deletion, will not be executed as initially modeled. This could lead to unexpected results in business reporting leading to a significant impact on integrity. However, there is no impact on confidentiality or availability. \nSeverity: 5.7 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T03:24:48.000000Z"}, {"uuid": "5e19cfa7-1a2a-4cc2-9054-6c5e9fefe66d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25242", "type": "seen", "source": "https://t.me/cvedetector/20023", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25242 - SAP NetWeaver Application Server ABAP Cross-Site Scripting (XSS) Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-25242 \nPublished : March 11, 2025, 1:15 a.m. | 24\u00a0minutes ago \nDescription : SAP NetWeaver Application Server ABAP allows malicious scripts to be executed in the application, potentially leading to a Cross-Site Scripting (XSS) vulnerability. This has no impact on the availability of the application, but it can have some minor impact on its confidentiality and integrity. \nSeverity: 6.1 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T03:24:47.000000Z"}, {"uuid": "6c915809-5e48-4423-8b84-c991286e0cf1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25245", "type": "seen", "source": "https://t.me/cvedetector/20019", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25245 - SAP BusinessObjects Business Intelligence Platform Web Intelligence Cross-Site Scripting (XSS)\", \n  \"Content\": \"CVE ID : CVE-2025-25245 \nPublished : March 11, 2025, 1:15 a.m. | 24\u00a0minutes ago \nDescription : SAP BusinessObjects Business Intelligence Platform (Web Intelligence) contains a deprecated web application endpoint that is not properly secured. An attacker could take advantage of this by injecting a malicious url in the data returned to the user. On successful exploitation, there could be a limited impact on confidentiality and integrity within the scope of victim\ufffds browser. There is no impact on availability. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-11T03:24:41.000000Z"}, {"uuid": "4837fcaa-4adb-471e-a63c-58676292805b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25246", "type": "seen", "source": "https://t.me/cvedetector/17271", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25246 - NETGEAR XR RCE\", \n  \"Content\": \"CVE ID : CVE-2025-25246 \nPublished : Feb. 5, 2025, 5:15 a.m. | 23\u00a0minutes ago \nDescription : NETGEAR XR1000 before 1.0.0.74, XR1000v2 before 1.1.0.22, and XR500 before 2.3.2.134 allow remote code execution by unauthenticated users. \nSeverity: 8.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"05 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-05T07:26:54.000000Z"}, {"uuid": "39707cba-f198-41df-9e8c-033fd849e538", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25241", "type": "seen", "source": "https://t.me/cvedetector/17618", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25241 - Apache Application Missing Authorization Check Allows Employee Information Access\", \n  \"Content\": \"CVE ID : CVE-2025-25241 \nPublished : Feb. 11, 2025, 1:15 a.m. | 31\u00a0minutes ago \nDescription : Due to a missing authorization check, an attacker who is logged in to application can view/ delete \ufffdMy Overtime Requests\ufffd which could allow the attacker to access employee information. This leads to low impact on confidentiality, integrity of the application. There is no impact on availability. \nSeverity: 5.4 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"11 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-11T03:07:42.000000Z"}, {"uuid": "c71ecfa6-43c6-49d9-a2a9-841b5ca996b0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25242", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7099", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25242\n\ud83d\udd25 CVSS Score: 6.1 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)\n\ud83d\udd39 Description: SAP NetWeaver Application Server ABAP allows malicious scripts to be executed in the application, potentially leading to a Cross-Site Scripting (XSS) vulnerability. This has no impact on the availability of the application, but it can have some minor impact on its confidentiality and integrity.\n\ud83d\udccf Published: 2025-03-11T00:32:28.733Z\n\ud83d\udccf Modified: 2025-03-11T02:13:11.225Z\n\ud83d\udd17 References:\n1. https://me.sap.com/notes/3562390\n2. https://url.sap/sapsecuritypatchday", "creation_timestamp": "2025-03-11T02:40:07.000000Z"}, {"uuid": "f917514a-af09-46f3-904f-74f6e4baf0c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25247", "type": "seen", "source": "https://t.me/cvedetector/17553", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-25247 - Apache Felix Webconsole Cross-site Scripting\", \n  \"Content\": \"CVE ID : CVE-2025-25247 \nPublished : Feb. 10, 2025, 12:15 p.m. | 1\u00a0hour, 15\u00a0minutes ago \nDescription : Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Apache Felix Webconsole.  \n  \nThis issue affects Apache Felix Webconsole 4.x up to 4.9.8 and 5.x up to 5.0.8.  \n  \nUsers are recommended to upgrade to version 4.9.10 or 5.0.10 or higher, which fixes the issue. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-10T14:34:45.000000Z"}, {"uuid": "aa6f8c8d-88d1-43c1-aa1d-20bc19628254", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25245", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7102", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25245\n\ud83d\udd25 CVSS Score: 5.4 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N)\n\ud83d\udd39 Description: SAP BusinessObjects Business Intelligence Platform (Web Intelligence) contains a deprecated web application endpoint that is not properly secured. An attacker could take advantage of this by injecting a malicious url in the data returned to the user. On successful exploitation, there could be a limited impact on confidentiality and integrity within the scope of victim\ufffds browser. There is no impact on availability.\n\ud83d\udccf Published: 2025-03-11T00:34:56.115Z\n\ud83d\udccf Modified: 2025-03-11T02:10:07.773Z\n\ud83d\udd17 References:\n1. https://me.sap.com/notes/3557469\n2. https://url.sap/sapsecuritypatchday", "creation_timestamp": "2025-03-11T02:40:12.000000Z"}, {"uuid": "567bf7cf-9903-4981-9289-c1d17430bf3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25244", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/7101", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-25244\n\ud83d\udd25 CVSS Score: 5.7 (cvssV3_1, Vector: CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N)\n\ud83d\udd39 Description: SAP Business Warehouse (Process Chains) allows an attacker to manipulate the process execution due to missing authorization check. An attacker with display authorization for the process chain object could set one or all processes to be skipped. This means corresponding activities, such as data loading, activation, or deletion, will not be executed as initially modeled. This could lead to unexpected results in business reporting leading to a significant impact on integrity. However, there is no impact on confidentiality or availability.\n\ud83d\udccf Published: 2025-03-11T00:34:42.757Z\n\ud83d\udccf Modified: 2025-03-11T02:12:02.750Z\n\ud83d\udd17 References:\n1. https://me.sap.com/notes/3552144\n2. https://url.sap/sapsecuritypatchday", "creation_timestamp": "2025-03-11T02:40:09.000000Z"}, {"uuid": "56413d09-5b39-43cb-88f7-e152a3ec0420", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-2524", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/16807", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-2524\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: The Ninja Forms  WordPress plugin before 3.10.1 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup).\n\ud83d\udccf Published: 2025-05-19T06:00:05.132Z\n\ud83d\udccf Modified: 2025-05-19T06:00:05.132Z\n\ud83d\udd17 References:\n1. https://wpscan.com/vulnerability/6e89ad2b-f12e-4b49-b34e-8da7d30629cd/", "creation_timestamp": "2025-05-19T06:38:51.000000Z"}, {"uuid": "09041ccb-56fb-4d12-af8f-120feea31d1f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25243", "type": "seen", "source": "Telegram/fDpnFMDycR34vnlZyVn6O0P_sOi8Y8G1NOFj_RFl-QCg24A", "content": "", "creation_timestamp": "2025-02-11T03:01:32.000000Z"}, {"uuid": "c2e08de3-282e-45f4-ad7a-fd20ab0d1504", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25246", "type": "seen", "source": "Telegram/WwqtEICyKU8cbOcVlgMoVXs3ldGPaOJgGec_vdN4FbMjm_A", "content": "", "creation_timestamp": "2025-02-05T06:30:19.000000Z"}, {"uuid": "4aa6fbda-6926-4916-844f-a175fa0fc4c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-25247", "type": "seen", "source": "Telegram/ILz_2WS40nKqReYb8y92vsgGbhhSplNBjrof2uaLIDf-KCFh", "content": "", "creation_timestamp": "2025-02-14T09:46:58.000000Z"}]}