{"vulnerability": "cve-2025-5927", "sightings": [{"uuid": "25902e48-7832-4316-8969-03f6f294e43c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5927", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lsgtov5mss2s", "content": "", "creation_timestamp": "2025-06-25T14:39:31.980811Z"}, {"uuid": "73729f47-16eb-4440-beeb-03c7061f2da9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59272", "type": "seen", "source": "https://bsky.app/profile/secqube.com/post/3m67lvmiivw2n", "content": "", "creation_timestamp": "2025-11-22T10:34:05.209406Z"}, {"uuid": "4c751ee1-6d56-40bd-9131-954ca3b87e35", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59278", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0310", "content": "", "creation_timestamp": "2025-10-24T06:24:42.000000Z"}, {"uuid": "9e844ee0-6da9-4759-a2bd-207467d93485", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59277", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0310", "content": "", "creation_timestamp": "2025-10-24T06:24:42.000000Z"}, {"uuid": "60e261c4-937e-41a9-a15f-9646eac2afb2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59275", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0310", "content": "", "creation_timestamp": "2025-10-24T06:24:42.000000Z"}, {"uuid": "caff3a62-427f-44bc-be24-f8f8ccaecee3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59273", "type": "seen", "source": "https://gist.github.com/Darkcrai86/cd137fc64a2683df53ae0168cb9a3a9c", "content": "", "creation_timestamp": "2025-10-26T17:37:05.000000Z"}, {"uuid": "dcbba7d6-7eb4-47c7-8d23-49bf2a8d5181", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59271", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0311", "content": "", "creation_timestamp": "2025-10-14T16:13:41.000000Z"}, {"uuid": "2554542c-30c9-4d0a-9a09-efb9f9ff1589", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59277", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0310", "content": "", "creation_timestamp": "2025-10-14T16:03:45.000000Z"}, {"uuid": "00350e02-7c61-4c4b-84bd-6ab30af7006a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59275", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0310", "content": "", "creation_timestamp": "2025-10-14T16:03:45.000000Z"}, {"uuid": "1c5bc2ca-d9f0-4929-9c1c-d99b244643b6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59278", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0310", "content": "", "creation_timestamp": "2025-10-14T16:03:45.000000Z"}, {"uuid": "274db107-ad94-4bed-ba23-ed90132ff234", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59271", "type": "seen", "source": "https://www.thezdi.com/blog/2025/10/14/the-october-2025-security-update-review", "content": "", "creation_timestamp": "2025-10-14T16:38:44.000000Z"}, {"uuid": "35472ecc-bde4-444b-8e74-3670b844dd4e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59278", "type": "seen", "source": "https://www.thezdi.com/blog/2025/10/14/the-october-2025-security-update-review", "content": "", "creation_timestamp": "2025-10-14T16:38:44.000000Z"}, {"uuid": "6638cdf6-9196-4cb2-9b26-cdd10807ffc6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59272", "type": "seen", "source": "https://www.thezdi.com/blog/2025/10/14/the-october-2025-security-update-review", "content": "", "creation_timestamp": "2025-10-14T16:38:44.000000Z"}, {"uuid": "77e3200d-ff91-4a4e-9b0a-548feebe544e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59275", "type": "seen", "source": "https://www.thezdi.com/blog/2025/10/14/the-october-2025-security-update-review", "content": "", "creation_timestamp": "2025-10-14T16:38:44.000000Z"}, {"uuid": "b39f5632-d114-4bb5-a1db-3d032b864373", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59277", "type": "seen", "source": "https://www.thezdi.com/blog/2025/10/14/the-october-2025-security-update-review", "content": "", "creation_timestamp": "2025-10-14T16:38:44.000000Z"}, {"uuid": "4b77f7eb-4f1a-41d1-99b1-dd5e3c67cc30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59272", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/115346367137866366", "content": "", "creation_timestamp": "2025-10-09T21:38:05.963306Z"}, {"uuid": "abc1d196-1b00-4750-b318-4b6ff1410a26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59271", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/115346367137866366", "content": "", "creation_timestamp": "2025-10-09T21:38:06.044518Z"}, {"uuid": "997f84a3-261f-41ef-a7cc-81cb5028eca3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59271", "type": "seen", "source": "https://gist.github.com/Darkcrai86/a1d6b4aaa6ecda458d2612b1abdd6244", "content": "", "creation_timestamp": "2025-10-10T06:21:39.000000Z"}, {"uuid": "c1a18899-ba01-4e09-b052-79b14abac7c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59273", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/115425816593871080", "content": "", "creation_timestamp": "2025-10-23T22:23:08.636561Z"}, {"uuid": "3e4e1938-8be6-4793-af44-97e5a2dee0ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-59273", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m3vhecmzei2e", "content": "", "creation_timestamp": "2025-10-23T22:55:32.865742Z"}, {"uuid": "78a085ec-7014-401f-bb4e-777201da1ae3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5927", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/19432", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-5927\n\ud83d\udd25 CVSS Score: 7.5 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: The Everest Forms (Pro) plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the delete_entry_files() function in all versions up to, and including, 1.9.4. This makes it possible for unauthenticated attackers to delete arbitrary files on the server, which can easily lead to remote code execution when the right file is deleted (such as wp-config.php). The vulnerability requires an admin to trigger the deletion via deletion of a form entry and cannot be carried out by the attacker alone.\n\ud83d\udccf Published: 2025-06-25T09:21:40.614Z\n\ud83d\udccf Modified: 2025-06-25T09:21:40.614Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/9e3a118f-4321-4579-a986-05ce077dc6b9?source=cve\n2. https://wordpress.org/plugins/everest-forms/\n3. https://everestforms.net/changelog/", "creation_timestamp": "2025-06-25T09:47:43.000000Z"}]}