{"vulnerability": "CVE-2024-25573", "sightings": [{"uuid": "32f0aba8-b119-4505-8ad0-c8c681485ed2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25573", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18379", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2024-25573\n\ud83d\udd25 CVSS Score: 6.9 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:H/AT:P/PR:H/UI:A/VC:L/VI:H/VA:N/SC:L/SI:H/SA:N/S:P/AU:N/R:U/RE:M/U:Red)\n\ud83d\udd39 Description: Unsanitized user-supplied data saved in the PingFederate Administrative Console could trigger the execution of JavaScript code in subsequent user processing.\n\ud83d\udccf Published: 2025-06-15T15:25:38.540Z\n\ud83d\udccf Modified: 2025-06-15T15:25:38.540Z\n\ud83d\udd17 References:\n1. https://docs.pingidentity.com/pingfederate/12.1/release_notes/pf_release_notes.html\n2. https://www.pingidentity.com/en/resources/downloads/pingfederate.html", "creation_timestamp": "2025-06-15T15:39:35.000000Z"}, {"uuid": "6b248667-3f40-4fef-b0ff-c1d2bad74308", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2024-25573", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lro6m3wzt42q", "content": "", "creation_timestamp": "2025-06-15T19:18:16.323918Z"}]}