{"vulnerability": "CVE-2025-1307", "sightings": [{"uuid": "f9bdf227-3f9f-4bce-ba60-e81797eb03c5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1307", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ljjvkjk4zp2h", "content": "", "creation_timestamp": "2025-03-04T07:04:08.918970Z"}, {"uuid": "016d04a6-8a1a-4e1a-b104-5605143517c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1307", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3ljkg3spm6t2q", "content": "", "creation_timestamp": "2025-03-04T12:00:11.762874Z"}, {"uuid": "c7208ef8-8608-44b7-a9ab-5dcee05afdad", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1307", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3ljlodab4eh2c", "content": "", "creation_timestamp": "2025-03-05T00:00:08.666753Z"}, {"uuid": "d7d06f4a-0434-41bf-abb3-579a84b536c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1307", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114103057938275565", "content": "", "creation_timestamp": "2025-03-04T07:48:13.119939Z"}, {"uuid": "78ae86a4-dc13-49fa-9570-4d7cae1dcad2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1307", "type": "seen", "source": "MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3", "content": "", "creation_timestamp": "2025-08-19T02:47:48.000000Z"}, {"uuid": "3a79f156-a28b-4c67-a7ae-90b6713d7473", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13075", "type": "seen", "source": "https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m5hxxeegajh2", "content": "", "creation_timestamp": "2025-11-13T01:06:15.688216Z"}, {"uuid": "4a94c6c2-fe74-4527-b53c-ce8324eae5b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13076", "type": "seen", "source": "https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m5hxxlett2n2", "content": "", "creation_timestamp": "2025-11-13T01:06:16.469365Z"}, {"uuid": "9af92259-8540-4aa2-9b6a-2b415aaa8fd6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13076", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m5i7dx3fsx2s", "content": "", "creation_timestamp": "2025-11-13T03:17:57.670587Z"}, {"uuid": "2ffe654d-c7d3-418a-a93d-c65881964b03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13075", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m5i7mvj22l2k", "content": "", "creation_timestamp": "2025-11-13T03:22:57.932781Z"}, {"uuid": "79b35d6c-4c7b-44cb-9187-4e1f2111ce34", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13078", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mhvchlod2p25", "content": "", "creation_timestamp": "2026-03-25T14:30:13.793792Z"}, {"uuid": "6ef9ac4d-2e27-448d-acdf-4d969cac0b52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13073", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7mj7nlnar2e", "content": "", "creation_timestamp": "2025-12-10T07:15:33.274491Z"}, {"uuid": "7be11f79-42e2-4887-9792-353447bc6c4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13072", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m7mjilzwg22o", "content": "", "creation_timestamp": "2025-12-10T07:20:33.893852Z"}, {"uuid": "2c0bd140-6927-426c-ad4f-758c38ca7f33", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13073", "type": "seen", "source": "https://gist.github.com/Darkcrai86/10212c9ef8a3f93c33ffb74d9cf5b7f6", "content": "", "creation_timestamp": "2025-12-10T07:44:51.000000Z"}, {"uuid": "98ea2dca-407b-46c4-89af-136354386531", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13072", "type": "seen", "source": "https://gist.github.com/Darkcrai86/e7850f58bee7a2ef527a7a893f643079", "content": "", "creation_timestamp": "2025-12-10T07:45:14.000000Z"}, {"uuid": "f22af347-dc59-4d6f-893f-baed97e1b249", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13073", "type": "seen", "source": "https://gist.github.com/Darkcrai86/db5eee3a896bfa95f73fff27f3b097d7", "content": "", "creation_timestamp": "2025-12-10T08:07:20.000000Z"}, {"uuid": "29fd8dfb-1a81-4308-ae8a-bbcd3701c396", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-13078", "type": "seen", "source": "https://www.hkcert.org/security-bulletin/gitlab-multiple-vulnerabilities_20260326", "content": "", "creation_timestamp": "2026-03-26T03:00:00.000000Z"}, {"uuid": "7aebaf83-d1d5-463c-92c4-94e2293aa72d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1307", "type": "seen", "source": "MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3", "content": "", "creation_timestamp": "2025-08-18T13:31:24.000000Z"}, {"uuid": "1074fcd2-62d9-4c03-bf83-47c8b246a2ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13070", "type": "seen", "source": "https://gist.github.com/Darkcrai86/baacc8ad5563c97f761a4ef6885de84e", "content": "", "creation_timestamp": "2025-12-09T08:02:04.000000Z"}, {"uuid": "03483df2-f56b-486a-a54a-763506e171dc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13071", "type": "seen", "source": "https://gist.github.com/Darkcrai86/6218b103e76a646c545b484268694727", "content": "", "creation_timestamp": "2025-12-09T08:01:41.000000Z"}, {"uuid": "73175956-3322-49d9-ac06-34842b221115", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13071", "type": "seen", "source": "https://gist.github.com/Darkcrai86/d23c5f5b0f14fcae4068a588b849d8af", "content": "", "creation_timestamp": "2025-12-09T09:26:19.000000Z"}, {"uuid": "901970a8-cb01-4e97-9584-f3c45e45f49b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13070", "type": "seen", "source": "https://gist.github.com/Darkcrai86/96e109b213679104d177602e4c03bfe1", "content": "", "creation_timestamp": "2025-12-09T09:28:24.000000Z"}, {"uuid": "4fbce33a-a937-49d4-b908-f46fc28d5554", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-13078", "type": "seen", "source": "https://ccb.belgium.be/advisories/warning-multiple-high-severity-vulnerabilities-gitlab-patch-immediately", "content": "", "creation_timestamp": "2026-03-27T10:02:46.000000Z"}, {"uuid": "3a349bea-f78c-4c68-8d84-8d4b1241ce6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13078", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3mhvqnsl7352n", "content": "", "creation_timestamp": "2026-03-25T18:44:15.126556Z"}, {"uuid": "e0643a2c-7e37-46eb-97ef-17286e83f7b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "86ecb4e1-bb32-44d5-9f39-8a4673af8385", "vulnerability": "CVE-2025-13078", "type": "seen", "source": "https://about.gitlab.com/releases/2026/03/25/patch-release-gitlab-18-10-1-released/", "content": "", "creation_timestamp": "2026-03-26T03:00:15.000000Z"}, {"uuid": "b08a6247-4888-44dd-872e-06fc0ece9788", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1307", "type": "seen", "source": "https://t.me/cvedetector/19472", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-1307 - Newscrunch WordPress Unauthenticated Arbitrary File Upload Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-1307 \nPublished : March 4, 2025, 5:15 a.m. | 1\u00a0hour, 23\u00a0minutes ago \nDescription : The Newscrunch theme for WordPress is vulnerable to arbitrary file uploads due to a missing capability check in the newscrunch_install_and_activate_plugin() function in all versions up to, and including, 1.8.4.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible. \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-04T08:18:32.000000Z"}, {"uuid": "032ac2f7-8443-4273-8d30-d78c9bc604c4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1307", "type": "published-proof-of-concept", "source": "Telegram/macVH0v7i2nzlHDG3843dn9M-u-r9AI0mgz7c0Lv52YB4Bs", "content": "", "creation_timestamp": "2025-03-04T06:01:30.000000Z"}, {"uuid": "c1359698-7a87-42ea-a5ab-3bf9c321affc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1307", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/6343", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-1307\n\ud83d\udd25 CVSS Score: 9.8 (cvssV3_1, Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)\n\ud83d\udd39 Description: The Newscrunch theme for WordPress is vulnerable to arbitrary file uploads due to a missing capability check in the newscrunch_install_and_activate_plugin() function in all versions up to, and including, 1.8.4.1. This makes it possible for authenticated attackers, with Subscriber-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.\n\ud83d\udccf Published: 2025-03-04T04:26:09.463Z\n\ud83d\udccf Modified: 2025-03-04T04:26:09.463Z\n\ud83d\udd17 References:\n1. https://www.wordfence.com/threat-intel/vulnerabilities/id/b55567e9-24e6-4738-b7f7-b95b541e6067?source=cve\n2. https://themes.trac.wordpress.org/browser/newscrunch/1.8.3/functions.php#L486\n3. https://themes.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=261789%40newscrunch&new=261789%40newscrunch&sfp_email=&sfph_mail=", "creation_timestamp": "2025-03-04T05:30:34.000000Z"}, {"uuid": "4c603752-d563-4e0c-81e2-717e8f39cbf7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1307", "type": "seen", "source": "Telegram/n00kCRnMj-tBQ4pZ1l9oQWnP5TRpU1UcBljcxKwlOyan_ruZ", "content": "", "creation_timestamp": "2025-05-11T17:39:33.000000Z"}, {"uuid": "e7e49b72-d6f6-4de3-be27-58a119fa0f6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1307", "type": "published-proof-of-concept", "source": "Telegram/sV1AUFkivO0e9rYI_xlVBhsFnqeagxDeiiX1CqtmuTVHp6k", "content": "", "creation_timestamp": "2025-03-06T04:00:08.000000Z"}, {"uuid": "f1d9aa5f-aadc-4243-ab9b-dc72b9879387", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1307", "type": "published-proof-of-concept", "source": "Telegram/AUcfxApx61EFHOeSqEfIRLhfCLQTn8bpNAF6AdXUDg93-Ws", "content": "", "creation_timestamp": "2025-03-04T22:00:06.000000Z"}]}