Most recent sightings.

Most recent sightings. https://vulnerability.circl.lu Contains only the most 10 recent sightings. http://www.rssboard.org/rss-specification python-feedgen en Thu, 11 Jun 2026 04:17:15 +0000 f7000862-c56d-4283-8da7-e8b7a0e6b87a https://vulnerability.circl.lu/sighting/f7000862-c56d-4283-8da7-e8b7a0e6b87a/export {"uuid": "f7000862-c56d-4283-8da7-e8b7a0e6b87a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3063", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/10039", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-3063\n\ud83d\udd25 CVSS Score: 8.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: The Shopper Approved Reviews plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ajax_callback_update_sa_option() function in versions 2.0 to 2.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.\n\ud83d\udccf Published: 2025-04-02T09:21:45.582Z\n\ud83d\udccf Modified: 2025-04-02T09:21:45.582Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/c042b347-2884-436d-abd3-6931548f18d6?source=cve\n2. https://plugins.trac.wordpress.org/browser/shopperapproved-reviews/trunk/shopperapproved.php#L154", "creation_timestamp": "2025-04-02T09:34:21.000000Z"} {"uuid": "f7000862-c56d-4283-8da7-e8b7a0e6b87a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3063", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/10039", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-3063\n\ud83d\udd25 CVSS Score: 8.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: The Shopper Approved Reviews plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ajax_callback_update_sa_option() function in versions 2.0 to 2.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site.\n\ud83d\udccf Published: 2025-04-02T09:21:45.582Z\n\ud83d\udccf Modified: 2025-04-02T09:21:45.582Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/c042b347-2884-436d-abd3-6931548f18d6?source=cve\n2. https://plugins.trac.wordpress.org/browser/shopperapproved-reviews/trunk/shopperapproved.php#L154", "creation_timestamp": "2025-04-02T09:34:21.000000Z"} https://vulnerability.circl.lu/sighting/f7000862-c56d-4283-8da7-e8b7a0e6b87a/export Wed, 02 Apr 2025 09:34:21 +0000 e0d26922-4f63-40b9-af10-fb145f41295f https://vulnerability.circl.lu/sighting/e0d26922-4f63-40b9-af10-fb145f41295f/export {"uuid": "e0d26922-4f63-40b9-af10-fb145f41295f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3063", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114268208738829564", "content": "", "creation_timestamp": "2025-04-02T11:48:14.606816Z"} {"uuid": "e0d26922-4f63-40b9-af10-fb145f41295f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3063", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114268208738829564", "content": "", "creation_timestamp": "2025-04-02T11:48:14.606816Z"} https://vulnerability.circl.lu/sighting/e0d26922-4f63-40b9-af10-fb145f41295f/export Wed, 02 Apr 2025 11:48:14 +0000 c68d79a2-eb8b-48f0-954b-9244ac51c591 https://vulnerability.circl.lu/sighting/c68d79a2-eb8b-48f0-954b-9244ac51c591/export {"uuid": "c68d79a2-eb8b-48f0-954b-9244ac51c591", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3063", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114268208738829564", "content": "", "creation_timestamp": "2025-04-02T11:48:14.609208Z"} {"uuid": "c68d79a2-eb8b-48f0-954b-9244ac51c591", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3063", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114268208738829564", "content": "", "creation_timestamp": "2025-04-02T11:48:14.609208Z"} https://vulnerability.circl.lu/sighting/c68d79a2-eb8b-48f0-954b-9244ac51c591/export Wed, 02 Apr 2025 11:48:14 +0000 68eaa8b8-3605-4b74-a020-91f7398c9f43 https://vulnerability.circl.lu/sighting/68eaa8b8-3605-4b74-a020-91f7398c9f43/export {"uuid": "68eaa8b8-3605-4b74-a020-91f7398c9f43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3063", "type": "seen", "source": "Telegram/GxscVgHGi2Dj9JAsk1s13zPD0HSWbYtjvdTWBziqgDrp7qU", "content": "", "creation_timestamp": "2025-04-02T12:00:49.000000Z"} {"uuid": "68eaa8b8-3605-4b74-a020-91f7398c9f43", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3063", "type": "seen", "source": "Telegram/GxscVgHGi2Dj9JAsk1s13zPD0HSWbYtjvdTWBziqgDrp7qU", "content": "", "creation_timestamp": "2025-04-02T12:00:49.000000Z"} https://vulnerability.circl.lu/sighting/68eaa8b8-3605-4b74-a020-91f7398c9f43/export Wed, 02 Apr 2025 12:00:49 +0000 14ed79ff-0596-4d72-9047-7df3faf33e9d https://vulnerability.circl.lu/sighting/14ed79ff-0596-4d72-9047-7df3faf33e9d/export {"uuid": "14ed79ff-0596-4d72-9047-7df3faf33e9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3063", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lltdyebxzm2x", "content": "", "creation_timestamp": "2025-04-02T12:06:45.189769Z"} {"uuid": "14ed79ff-0596-4d72-9047-7df3faf33e9d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3063", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lltdyebxzm2x", "content": "", "creation_timestamp": "2025-04-02T12:06:45.189769Z"} https://vulnerability.circl.lu/sighting/14ed79ff-0596-4d72-9047-7df3faf33e9d/export Wed, 02 Apr 2025 12:06:45 +0000 a0055a54-e91f-4236-9f47-d457fcebd121 https://vulnerability.circl.lu/sighting/a0055a54-e91f-4236-9f47-d457fcebd121/export {"uuid": "a0055a54-e91f-4236-9f47-d457fcebd121", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3063", "type": "seen", "source": "https://t.me/cvedetector/21860", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-3063 - WordPress Shopper Approved Reviews Privilege Escalation\", \n \"Content\": \"CVE ID : CVE-2025-3063 \nPublished : April 2, 2025, 10:15 a.m. | 2\u00a0hours, 2\u00a0minutes ago \nDescription : The Shopper Approved Reviews plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ajax_callback_update_sa_option() function in versions 2.0 to 2.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"02 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-02T14:59:03.000000Z"} {"uuid": "a0055a54-e91f-4236-9f47-d457fcebd121", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-3063", "type": "seen", "source": "https://t.me/cvedetector/21860", "content": "{\n \"Source\": \"CVE FEED\",\n \"Title\": \"CVE-2025-3063 - WordPress Shopper Approved Reviews Privilege Escalation\", \n \"Content\": \"CVE ID : CVE-2025-3063 \nPublished : April 2, 2025, 10:15 a.m. | 2\u00a0hours, 2\u00a0minutes ago \nDescription : The Shopper Approved Reviews plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the ajax_callback_update_sa_option() function in versions 2.0 to 2.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to update arbitrary options on the WordPress site. This can be leveraged to update the default role for registration to administrator and enable user registration for attackers to gain administrative user access to a vulnerable site. \nSeverity: 8.8 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n \"Detection Date\": \"02 Apr 2025\",\n \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-04-02T14:59:03.000000Z"} https://vulnerability.circl.lu/sighting/a0055a54-e91f-4236-9f47-d457fcebd121/export Wed, 02 Apr 2025 14:59:03 +0000 965fcbc9-aa75-4981-b978-808e5edfc969 https://vulnerability.circl.lu/sighting/965fcbc9-aa75-4981-b978-808e5edfc969/export {"uuid": "965fcbc9-aa75-4981-b978-808e5edfc969", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30633", "type": "seen", "source": "Telegram/e-X4ScE1vEPdKuuUEgfhVv-BIPUzPUJYlt0nH6_CCEcxyPQ", "content": "", "creation_timestamp": "2026-01-05T12:04:18.000000Z"} {"uuid": "965fcbc9-aa75-4981-b978-808e5edfc969", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30633", "type": "seen", "source": "Telegram/e-X4ScE1vEPdKuuUEgfhVv-BIPUzPUJYlt0nH6_CCEcxyPQ", "content": "", "creation_timestamp": "2026-01-05T12:04:18.000000Z"} https://vulnerability.circl.lu/sighting/965fcbc9-aa75-4981-b978-808e5edfc969/export Mon, 05 Jan 2026 12:04:18 +0000 2757cd83-8a2d-48e0-ae89-69eac6f9884f https://vulnerability.circl.lu/sighting/2757cd83-8a2d-48e0-ae89-69eac6f9884f/export {"uuid": "2757cd83-8a2d-48e0-ae89-69eac6f9884f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30631", "type": "published-proof-of-concept", "source": "Telegram/SbENG35ygL93WUNW_3oxjVbNr-2bylmdOILaE4ByaVRwe60", "content": "", "creation_timestamp": "2026-01-06T22:03:41.000000Z"} {"uuid": "2757cd83-8a2d-48e0-ae89-69eac6f9884f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30631", "type": "published-proof-of-concept", "source": "Telegram/SbENG35ygL93WUNW_3oxjVbNr-2bylmdOILaE4ByaVRwe60", "content": "", "creation_timestamp": "2026-01-06T22:03:41.000000Z"} https://vulnerability.circl.lu/sighting/2757cd83-8a2d-48e0-ae89-69eac6f9884f/export Tue, 06 Jan 2026 22:03:41 +0000 f61c62d2-1c65-4a50-9cd3-181353b2c65f https://vulnerability.circl.lu/sighting/f61c62d2-1c65-4a50-9cd3-181353b2c65f/export {"uuid": "f61c62d2-1c65-4a50-9cd3-181353b2c65f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30631", "type": "seen", "source": "https://gist.github.com/Darkcrai86/b42b905fccf999dd1693ed1bb704bf71", "content": "", "creation_timestamp": "2026-01-07T08:32:17.000000Z"} {"uuid": "f61c62d2-1c65-4a50-9cd3-181353b2c65f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-30631", "type": "seen", "source": "https://gist.github.com/Darkcrai86/b42b905fccf999dd1693ed1bb704bf71", "content": "", "creation_timestamp": "2026-01-07T08:32:17.000000Z"} https://vulnerability.circl.lu/sighting/f61c62d2-1c65-4a50-9cd3-181353b2c65f/export Wed, 07 Jan 2026 08:32:17 +0000