{"uuid": "11e53928-9520-4acf-9125-f92f9a5eb64e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1909", "type": "seen", "source": "https://bsky.app/profile/hugovalters.bsky.social/post/3mmr6f6ytwy2w", "content": "CVE-2025-1909 - Critical authentication bypass in BuddyBoss Platform Pro (\u22642.7.01). Apple OAuth flaw lets attackers log in as any user, including admins. CVSS 9.8. Unpatched. Disable OAuth or update immediately. #CVE #WordPress #infosec\n\nhttps://www.valtersit.com/cve/CVE-2025-1909/", "creation_timestamp": "2026-05-26T14:12:37.849241Z"}