{"vulnerability": "CVE-2025-5890", "sightings": [{"uuid": "95471bdc-6faa-4803-b2cc-3c2a82c40f4c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58907", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ly5wosnio62r", "content": "", "creation_timestamp": "2025-09-06T10:10:23.030208Z"}, {"uuid": "270fffbb-3bee-4554-b22c-7cddd27f97b1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58909", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ly5wxr2c2t2d", "content": "", "creation_timestamp": "2025-09-06T10:15:23.084692Z"}, {"uuid": "b925ef74-4ea8-4345-9988-194b1949b04e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58908", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ly5xsmc3cg2q", "content": "", "creation_timestamp": "2025-09-06T10:30:24.082146Z"}, {"uuid": "69a414c3-2de5-4f44-b175-278cc08ed156", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-5890", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/17747", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-5890\n\ud83d\udd25 CVSS Score: 5.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X)\n\ud83d\udd39 Description: A vulnerability classified as problematic has been found in actions toolkit 0.5.0. This affects the function globEscape of the file toolkit/packages/glob/src/internal-pattern.ts of the component glob. The manipulation leads to inefficient regular expression complexity. It is possible to initiate the attack remotely.\n\ud83d\udccf Published: 2025-06-09T18:31:05.291Z\n\ud83d\udccf Modified: 2025-06-09T18:44:14.680Z\n\ud83d\udd17 References:\n1. https://vuldb.com/?id.311661\n2. https://vuldb.com/?ctiid.311661\n3. https://vuldb.com/?submit.585727\n4. https://github.com/actions/toolkit/pull/2057", "creation_timestamp": "2025-06-09T19:48:09.000000Z"}, {"uuid": "7618f7f6-d3cb-44c6-b607-ab767e0e9032", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58902", "type": "seen", "source": "https://bsky.app/profile/postac001.bsky.social/post/3mpojbp3e6w2v", "content": "\u8a18\u4e8b\u5185\u5bb9\u304c\u63d0\u4f9b\u3055\u308c\u3066\u3044\u307e\u305b\u3093\u3002\nCVE-2025-58902 CVSS 8.1 | HIGH", "creation_timestamp": "2026-07-02T17:05:07.144639Z"}, {"uuid": "4d6504fa-8477-402b-9eb1-7b8a32557700", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58902", "type": "seen", "source": "https://bsky.app/profile/kriptabiz.bsky.social/post/3mpplzmqmgt2k", "content": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c CVE-2025-58902: \u041d\u0435\u0441\u0430\u043d\u043a\u0446\u0438\u043e\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0435 \u0432\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0435 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0445 \u0444\u0430\u0439\u043b\u043e\u0432 \u0432 Lighthouse \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 1.2.12\n\n\n\nhttps://kripta.biz/posts/775C8F79-EFFC-47CC-9A81-000FCE1547E2", "creation_timestamp": "2026-07-03T03:26:57.235483Z"}, {"uuid": "1201615a-1278-47ef-a2b7-4997d274373d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-58902", "type": "seen", "source": "https://bsky.app/profile/cybersecinsight.bsky.social/post/3mpqhkmvsvp2h", "content": "\ud83d\udd0d Vulnerability Spotlight | Part 2/3\n\n\u26a0\ufe0f CVE-2025-58902\n\nUnauthenticated Local File Inclusion in Lighthouse &lt;= 1.2.12 versions.", "creation_timestamp": "2026-07-03T11:39:39.023813Z"}]}