{"vulnerability": "CVE-2025-1219", "sightings": [{"uuid": "a7d932b1-d4b0-44a4-968c-0dcd233aacb7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1219", "type": "seen", "source": "https://bsky.app/profile/hackingne.ws/post/3llnwbk56ra2p", "content": "", "creation_timestamp": "2025-03-31T08:18:04.163323Z"}, {"uuid": "d869eb4e-90ed-4364-99c7-b38e5648c4b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12192", "type": "seen", "source": "https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m4v46hbihcp2", "content": "", "creation_timestamp": "2025-11-05T13:01:38.179837Z"}, {"uuid": "317d1a3c-7d89-4a39-97d3-8c8ff6925c76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1219", "type": "seen", "source": "https://bsky.app/profile/buherator.bsky.social/post/3lkea5pjd6i23", "content": "", "creation_timestamp": "2025-03-14T18:23:02.720388Z"}, {"uuid": "c9eb314c-6ce1-41e7-af84-89b62dc8d93d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1219", "type": "seen", "source": "https://bsky.app/profile/remirepo.bsky.social/post/3lkcy2yftts27", "content": "", "creation_timestamp": "2025-03-14T06:25:41.598835Z"}, {"uuid": "f01bd391-c78f-4815-8839-5aff6ab92c86", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1219", "type": "seen", "source": "https://bsky.app/profile/remirepo.bsky.social/post/3lkn5b43pwc2d", "content": "", "creation_timestamp": "2025-03-18T07:25:13.181690Z"}, {"uuid": "4f9ef473-4ef6-4962-8b9b-0ec52998d7b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12192", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m4v2vuqmqd2q", "content": "", "creation_timestamp": "2025-11-05T12:37:55.458783Z"}, {"uuid": "637c29b9-a5c7-44da-9427-1bf4d4294500", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12197", "type": "seen", "source": "https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m4uftdqnuwq2", "content": "", "creation_timestamp": "2025-11-05T06:20:48.021684Z"}, {"uuid": "0d8ca601-360a-4bee-ac6e-3339be37c113", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12198", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m45lbhbu3g2o", "content": "", "creation_timestamp": "2025-10-27T04:26:50.253812Z"}, {"uuid": "8eba36d9-d925-495f-a906-1cb2b34709b8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12194", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m3yexyohrv2i", "content": "", "creation_timestamp": "2025-10-25T02:50:51.664125Z"}, {"uuid": "4230e9cb-ee28-4b98-a6bb-5862b8cc2d48", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12198", "type": "seen", "source": "https://seclists.org/oss-sec/2025/q4/72", "content": "", "creation_timestamp": "2025-10-27T15:36:34.000000Z"}, {"uuid": "1f3a5548-a933-4ae6-a07c-3f12bee465ec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12193", "type": "seen", "source": "https://bsky.app/profile/jos1264.social.skynetcloud.site.ap.brid.gy/post/3m53vblbzqmk2", "content": "", "creation_timestamp": "2025-11-08T05:45:50.759943Z"}, {"uuid": "9cca9814-2808-4f82-8660-e624fe632bd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12197", "type": "seen", "source": "https://gist.github.com/Darkcrai86/3adb040cff1942a279da2cbd96a0ad65", "content": "", "creation_timestamp": "2025-11-05T07:42:40.000000Z"}, {"uuid": "4c162019-f8ef-4aa4-9ed3-2aa8b57c524f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12197", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m4uioomzzd2s", "content": "", "creation_timestamp": "2025-11-05T07:11:46.613534Z"}, {"uuid": "693bf14c-9035-4897-b897-94daa8b37e37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1219", "type": "seen", "source": "https://t.me/anti_malware/20065", "content": "\ud83d\udee0\ufe0f PHP \u0441\u043d\u043e\u0432\u0430 \u043b\u0430\u0442\u0430\u0435\u0442 \u0434\u044b\u0440\u044b: \u043d\u0430 5 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439 \u043c\u0435\u043d\u044c\u0448\u0435, \u043d\u043e \u0440\u0438\u0441\u043a\u0438 \u0431\u044b\u043b\u0438 \u0437\u043d\u0430\u0442\u043d\u044b\u0435! \ud83d\udc18\ud83d\udca8\n\n\u0420\u0430\u0437\u0440\u0430\u0431\u043e\u0442\u0447\u0438\u043a\u0438 \u0441\u043d\u043e\u0432\u0430 \u0432\u0437\u044f\u043b\u0438 \u043c\u043e\u043b\u043e\u0442\u043e\u043a \u0438 \u0437\u0430\u043a\u043e\u043b\u043e\u0442\u0438\u043b\u0438 \u043d\u0435\u0441\u043a\u043e\u043b\u044c\u043a\u043e \u0441\u0435\u0440\u044c\u0435\u0437\u043d\u044b\u0445 \u0434\u044b\u0440 \u0432 \u043a\u043e\u0434\u0435! \ud83d\udd28\ud83d\udea7 \u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f \u0443\u0441\u0442\u0440\u0430\u043d\u044f\u044e\u0442 \u043f\u044f\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043e\u0433\u043b\u0438 \u043f\u0440\u0435\u0432\u0440\u0430\u0442\u0438\u0442\u044c \u0432\u0430\u0448\u0435 \u0432\u0435\u0431-\u043f\u0440\u0438\u043b\u043e\u0436\u0435\u043d\u0438\u0435 \u0432 \u0448\u0432\u0435\u0439\u0446\u0430\u0440\u0441\u043a\u0438\u0439 \u0441\u044b\u0440 \u0434\u043b\u044f \u0445\u0430\u043a\u0435\u0440\u043e\u0432. \ud83e\uddc0\n\n\ud83e\ude79 CVE-2025-1861 \u2014 \ud83e\udd26\u200d\u2642\ufe0f \u0411\u0443\u0444\u0435\u0440 \u043f\u043e\u0434 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043e\u043a Location \u043e\u043a\u0430\u0437\u0430\u043b\u0441\u044f \u043c\u0430\u043b\u043e\u0432\u0430\u0442 (1024 \u0431\u0430\u0439\u0442\u0430 \u0432\u043c\u0435\u0441\u0442\u043e 8000). \u0418\u0442\u043e\u0433: \u043c\u043e\u0433\u043b\u0438 \u043f\u0440\u043e\u043f\u0430\u0441\u0442\u044c \u0432\u0430\u0436\u043d\u044b\u0435 \u0447\u0430\u0441\u0442\u0438 URI \u0438\u043b\u0438 \u0434\u0430\u0436\u0435 \u0441\u043b\u0443\u0447\u0438\u0442\u044c\u0441\u044f \u0440\u0435\u0434\u0438\u0440\u0435\u043a\u0442\u043d\u044b\u0439 \u0445\u0430\u043e\u0441! \ud83d\udd04\n\ud83e\ude79 CVE-2025-1734 \u2014 \ud83d\udd75\ufe0f\u200d\u2642\ufe0f \u0417\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0438 \u0431\u0435\u0437 \u0434\u0432\u043e\u0435\u0442\u043e\u0447\u0438\u044f \u0438\u043b\u0438 \u0441 \u043f\u0440\u043e\u0431\u0435\u043b\u043e\u043c \u043f\u0435\u0440\u0435\u0434 \u043d\u0438\u043c \u043d\u0435 \u0432\u044b\u0437\u044b\u0432\u0430\u043b\u0438 \u043e\u0448\u0438\u0431\u043a\u0438, \u0430 \u0437\u043d\u0430\u0447\u0438\u0442, \u043c\u043e\u0436\u043d\u043e \u0431\u044b\u043b\u043e \u043f\u0440\u043e\u0432\u0435\u0440\u043d\u0443\u0442\u044c request smuggling \u0438 \u0448\u043f\u0438\u043e\u043d\u0438\u0442\u044c \u0437\u0430 \u0434\u0430\u043d\u043d\u044b\u043c\u0438! \ud83d\ude08\n\ud83e\ude79 CVE-2025-1217 \u2014 \ud83d\udcdc \u041f\u0430\u0440\u0441\u0435\u0440 \u043d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u043e \u0447\u0438\u0442\u0430\u043b \u0441\u0432\u0435\u0440\u043d\u0443\u0442\u044b\u0435 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0438, \u0447\u0442\u043e \u043c\u043e\u0433\u043b\u043e \u0441\u043b\u043e\u043c\u0430\u0442\u044c MIME-\u0442\u0438\u043f\u044b \u0438 \u043f\u043e\u0434\u043f\u043e\u0440\u0442\u0438\u0442\u044c \u0440\u0430\u0431\u043e\u0442\u0443 \u0440\u0435\u0434\u0438\u0440\u0435\u043a\u0442\u043e\u0432. \ud83c\udfad\n\ud83e\ude79 CVE-2025-1219 \u2014 \ud83d\udd04 libxml \u043f\u0443\u0442\u0430\u043b\u0441\u044f \u0432 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0430\u0445 \u0440\u0435\u0434\u0438\u0440\u0435\u043a\u0442\u043e\u0432, \u0438\u0437-\u0437\u0430 \u0447\u0435\u0433\u043e \u043c\u043e\u0436\u043d\u043e \u0431\u044b\u043b\u043e \u043e\u0431\u043e\u0439\u0442\u0438 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438. \u041a\u0442\u043e \u0442\u0430\u043c \u0445\u043e\u0442\u0435\u043b \u00ab\u043d\u0435\u043a\u043e\u0440\u0440\u0435\u043a\u0442\u043d\u044b\u0439 \u043f\u0430\u0440\u0441\u0438\u043d\u0433 \u0434\u043e\u043a\u0443\u043c\u0435\u043d\u0442\u0430\u00bb? \ud83c\udfab\ud83d\udeaa\n\ud83e\ude79 CVE-2025-1736 \u2014 \ud83d\udce1 \u041e\u0448\u0438\u0431\u043a\u0430 \u0432 check_has_header \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u043b\u0430 \u043a \u0442\u043e\u043c\u0443, \u0447\u0442\u043e \u043d\u0435\u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0437\u0430\u0433\u043e\u043b\u043e\u0432\u043a\u0438 (\u043d\u0430\u043f\u0440\u0438\u043c\u0435\u0440, Authorization) \u043f\u0440\u043e\u0441\u0442\u043e \u043d\u0435 \u043e\u0442\u043f\u0440\u0430\u0432\u043b\u044f\u043b\u0438\u0441\u044c. \u042d\u0442\u043e \u043c\u043e\u0433\u043b\u043e \u0432\u044b\u0437\u0432\u0430\u0442\u044c DoS \u0438\u043b\u0438 \u0434\u0440\u0443\u0433\u0438\u0435 \u043f\u0440\u043e\u0431\u043b\u0435\u043c\u044b. \ud83e\udd37\u200d\u2642\ufe0f", "creation_timestamp": "2025-03-18T18:06:01.000000Z"}, {"uuid": "82e5a6b9-8bd8-41e7-8e15-0d00ec78ad36", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12195", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/115663574444372667", "content": "", "creation_timestamp": "2025-12-04T22:08:05.232047Z"}, {"uuid": "aac7ba73-c2a1-4b6a-a672-e30005d76793", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12196", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/115663574444372667", "content": "", "creation_timestamp": "2025-12-04T22:08:05.320915Z"}, {"uuid": "39d6d3eb-6083-4925-99e7-46a17d35182b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12195", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m76zyo5xyo2u", "content": "", "creation_timestamp": "2025-12-04T22:38:35.971433Z"}, {"uuid": "59aae35a-5fe7-49e6-a61b-2a747de58673", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12196", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3m772fe6d7u2q", "content": "", "creation_timestamp": "2025-12-04T22:45:41.954941Z"}, {"uuid": "664e359b-fc20-42b2-a39d-6a35f4682533", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1219", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/29168", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aA PHP CVE-2025-1219 SCANNER. In bash no root.\nURL\uff1ahttps://github.com/ediop3SquadALT/ediop3PHP\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-04-02T17:55:28.000000Z"}, {"uuid": "1de4ce36-df96-474a-919c-763b69b13436", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1219", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/9547", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-1219\n\ud83d\udd25 CVSS Score: 6.3 (cvssV4_0, Vector: CVSS:4.0/AV:N/AC:H/AT:P/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N)\n\ud83d\udd39 Description: In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when requesting a HTTP resource using the DOM or SimpleXML extensions, the wrong content-type\u00a0header is used to determine the charset when the requested resource performs a redirect. This may cause the resulting document to be parsed incorrectly or bypass validations.\n\ud83d\udccf Published: 2025-03-30T05:33:13.801Z\n\ud83d\udccf Modified: 2025-03-30T05:33:13.801Z\n\ud83d\udd17 References:\n1. https://github.com/php/php-src/security/advisories/GHSA-p3x9-6h7p-cgfc", "creation_timestamp": "2025-03-30T06:32:02.000000Z"}, {"uuid": "a129f086-1fd0-4115-b107-840ec0911a6b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1219", "type": "published-proof-of-concept", "source": "Telegram/TWpQ0c_C6YvvOFPQCx9RaG8kEfWk1VJPeSRhUGPNV2cSPY0", "content": "", "creation_timestamp": "2025-04-02T23:00:06.000000Z"}, {"uuid": "cad07b88-09b9-4839-8352-cecbf5d34416", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12191", "type": "seen", "source": "https://gist.github.com/Darkcrai86/0872e3f037b25440e736ef39fad6d798", "content": "", "creation_timestamp": "2025-12-05T12:50:18.000000Z"}, {"uuid": "0e1f7f46-f7e1-42ea-b54c-1137f24211f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-12190", "type": "seen", "source": "https://gist.github.com/Darkcrai86/51d786ea2cb712f6e3ce688c2f8a1289", "content": "", "creation_timestamp": "2025-12-05T12:49:53.000000Z"}, {"uuid": "b4ae7c2e-9a13-4296-aafa-a0f35ac122c0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1219", "type": "seen", "source": "https://bsky.app/profile/o2cloud.bsky.social/post/3mi2g7kvhxz2r", "content": "", "creation_timestamp": "2026-03-27T15:20:38.324081Z"}, {"uuid": "d1d72a64-15ec-47e3-ad97-33b76b742605", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1219", "type": "seen", "source": "https://t.me/cvedetector/21513", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-1219 - Apache HTTP Server PHP DOM XML Charset Bypass\", \n  \"Content\": \"CVE ID : CVE-2025-1219 \nPublished : March 30, 2025, 6:15 a.m. | 1\u00a0hour, 55\u00a0minutes ago \nDescription : In PHP from 8.1.* before 8.1.32, from 8.2.* before 8.2.28, from 8.3.* before 8.3.19, from 8.4.* before 8.4.5, when requesting a HTTP resource using the DOM or SimpleXML extensions, the wrong content-type\u00a0header is used to determine the charset when the requested resource performs a redirect. This may cause the resulting document to be parsed incorrectly or bypass validations. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"30 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-30T10:34:18.000000Z"}]}