{"vulnerability": "cve-2025-4899", "sightings": [{"uuid": "570576ea-c85b-4318-958a-4aa35b9bb4b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48997", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lqqbc66d4e2j", "content": "", "creation_timestamp": "2025-06-03T21:46:32.175411Z"}, {"uuid": "84ac6335-fdad-4e6c-981e-ed7de87702a1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48995", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqnawo6y44y2", "content": "", "creation_timestamp": "2025-06-02T17:04:06.798585Z"}, {"uuid": "0dfde8b0-46bc-488e-b883-ba921baca668", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48997", "type": "seen", "source": "https://bsky.app/profile/andrewnez.mastodon.social.ap.brid.gy/post/3lrauylp3wxs2", "content": "", "creation_timestamp": "2025-06-10T12:22:27.802973Z"}, {"uuid": "6434aeb6-f932-4d59-add3-24286574056f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48990", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqmuumvgmde2", "content": "", "creation_timestamp": "2025-06-02T13:29:12.940107Z"}, {"uuid": "bea4164d-b386-4187-b15b-b11dbb9d609c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48999", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lqqkl2lmpn2q", "content": "", "creation_timestamp": "2025-06-04T00:32:34.250430Z"}, {"uuid": "6fb5617e-cee1-4038-b69a-3d1ff5660b7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48994", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqnaxexf24s2", "content": "", "creation_timestamp": "2025-06-02T17:04:09.609961Z"}, {"uuid": "2c27f241-81f4-4818-ad5a-c3f68eff54ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48991", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lsh33cyagc2r", "content": "", "creation_timestamp": "2025-06-25T16:51:45.454893Z"}, {"uuid": "0e29f67f-b07b-46d8-b1de-b08fbffcfafb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48997", "type": "seen", "source": "https://bsky.app/profile/ulisesgascon.com/post/3lqppyr3vjs2l", "content": "", "creation_timestamp": "2025-06-03T16:37:05.145401Z"}, {"uuid": "81650d48-868c-4ca8-98be-84c204b2b34e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48996", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqnmxvlqxrc2", "content": "", "creation_timestamp": "2025-06-02T20:37:42.729844Z"}, {"uuid": "adea3507-970b-4758-9880-cc0dfd1c6b5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48993", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrrki5y7up2o", "content": "", "creation_timestamp": "2025-06-17T03:28:48.333273Z"}, {"uuid": "90db165f-04a4-4d27-8368-a7423382ff61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48996", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lqo2nkdcel2e", "content": "", "creation_timestamp": "2025-06-03T00:42:18.250901Z"}, {"uuid": "a4d9f199-48f6-48ae-96e3-def51378adc3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-4899", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lpifexayr62w", "content": "", "creation_timestamp": "2025-05-19T01:13:11.941165Z"}, {"uuid": "33af7b4d-e459-4921-9813-c2b831b2bedf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48998", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqpzkiekknm2", "content": "", "creation_timestamp": "2025-06-03T19:28:38.852542Z"}, {"uuid": "00d32126-1028-4ac0-b0e1-3fef5e18155c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-4899", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/16784", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-4899\n\ud83d\udd25 CVSS Score: 6.9 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: A vulnerability was found in Campcodes Sales and Inventory System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /pages/transaction_update.php. The manipulation of the argument ID leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.\n\ud83d\udccf Published: 2025-05-18T22:31:05.176Z\n\ud83d\udccf Modified: 2025-05-18T22:31:05.176Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.309455\n2. https://vuldb.com/?ctiid.309455\n3. https://vuldb.com/?submit.578040\n4. https://github.com/RoyalZJT/CVE/issues/1\n5. https://www.campcodes.com/", "creation_timestamp": "2025-05-18T23:37:42.000000Z"}, {"uuid": "348fd4e7-c4a6-482f-96b4-a497c40caa92", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48998", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lqq7inqymq2p", "content": "", "creation_timestamp": "2025-06-03T21:14:22.353662Z"}, {"uuid": "cb607399-4c26-4460-af77-33f1682cb4c3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48997", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqpzkhwltri2", "content": "", "creation_timestamp": "2025-06-03T19:28:38.134322Z"}, {"uuid": "1ff3ce5e-5c72-4464-a141-d208ee690ae1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48991", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/19463", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48991\n\ud83d\udd25 CVSS Score: 4.6 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L)\n\ud83d\udd39 Description: Tuleap is an Open Source Suite to improve management of software developments and collaboration. An attacker could use a vulnerability present in Tuleap Community Edition prior to version 16.8.99.1748845907 and Tuleap Enterprise Edition prior to versions 16.8-3 and 16.7-5 to trick victims into changing the canned responses. Tuleap Community Edition 16.8.99.1748845907, Tuleap Enterprise Edition 16.8-3, and Tuleap Enterprise Edition 16.7-5 contain a fix for the vulnerability.\n\ud83d\udccf Published: 2025-06-25T14:07:47.416Z\n\ud83d\udccf Modified: 2025-06-25T14:16:19.378Z\n\ud83d\udd17 References:\n1. https://github.com/Enalean/tuleap/security/advisories/GHSA-px9r-875r-w534\n2. https://github.com/Enalean/tuleap/commit/cbf9b2a38e33dfd755dc2ccf074126b598a78274\n3. https://tuleap.net/plugins/git/tuleap/tuleap/stable?a=commit&h=cbf9b2a38e33dfd755dc2ccf074126b598a78274\n4. https://tuleap.net/plugins/tracker/?aid=43326", "creation_timestamp": "2025-06-25T14:51:35.000000Z"}, {"uuid": "2ed71c66-e4a9-4847-8657-6bf39b4c97e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48992", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18549", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-48992\n\ud83d\udd25 CVSS Score: 5.2 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:N/SC:H/SI:H/SA:N/E:P)\n\ud83d\udd39 Description: Group-Office is an enterprise customer relationship management and groupware tool. Prior to versions 6.8.123 and 25.0.27, a stored and blind cross-site scripting (XSS) vulnerability exists in the Name Field of the user profile. A malicious attacker can change their name to a javascript payload, which is executed when a user adds the malicious user to their Synchronization > Address books. This issue has been patched in versions  6.8.123 and 25.0.27.\n\ud83d\udccf Published: 2025-06-16T22:17:28.511Z\n\ud83d\udccf Modified: 2025-06-16T22:17:28.511Z\n\ud83d\udd17 References:\n1. https://github.com/Intermesh/groupoffice/security/advisories/GHSA-j35g-q5mc-jwgp\n2. https://github.com/Intermesh/groupoffice/commit/2e3695db9cdef1da7a9d754ff4d98f49f6924e2d", "creation_timestamp": "2025-06-16T22:40:43.000000Z"}, {"uuid": "f515629a-3255-472f-a6a3-d78fe9ecda43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-48990", "type": "published-proof-of-concept", "source": "Telegram/rXYL1lXWkEU6X4s-B12vmJDiUkp3J5RpkWN8Rf8Wlc0XZWI", "content": "", "creation_timestamp": "2025-06-02T12:01:30.000000Z"}]}