{"vulnerability": "CVE-2025-1302", "sightings": [{"uuid": "1182cc9b-eeac-4da3-84e7-036b39474f29", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114195295182774871", "content": "", "creation_timestamp": "2025-03-20T14:45:22.054040Z"}, {"uuid": "994504aa-d674-4679-8180-de51b4178754", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/114006161366925881", "content": "", "creation_timestamp": "2025-02-15T05:06:08.767064Z"}, {"uuid": "54702318-ad54-4abf-9701-a55f89e23f89", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "https://bsky.app/profile/cve-notifications.bsky.social/post/3li6xkquhej27", "content": "", "creation_timestamp": "2025-02-15T05:15:34.256027Z"}, {"uuid": "a81bff0f-db23-4cce-a1fe-9bd953933b70", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114006563268549921", "content": "", "creation_timestamp": "2025-02-15T06:48:21.404239Z"}, {"uuid": "7df5647f-e420-4fe5-94ac-8412c876014b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3li7eeh3tfs2v", "content": "", "creation_timestamp": "2025-02-15T09:04:41.687894Z"}, {"uuid": "3138e8ab-ddf6-4da2-9193-1c27eda4577e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3li7o65ch5n2w", "content": "", "creation_timestamp": "2025-02-15T12:00:08.398452Z"}, {"uuid": "2a3b179c-52d3-4c1c-bdf4-b57c2cbd8071", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "https://bsky.app/profile/vulnalerts.bsky.social/post/3liawfmrsr225", "content": "", "creation_timestamp": "2025-02-16T00:00:08.178082Z"}, {"uuid": "739e512e-28b8-4da4-b13a-70e64788fda2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114263601722430109", "content": "", "creation_timestamp": "2025-04-01T16:16:37.071936Z"}, {"uuid": "39ce452e-8368-4e3e-98c2-e662dd720b71", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114263601722430109", "content": "", "creation_timestamp": "2025-04-01T16:16:37.080877Z"}, {"uuid": "a6de1ce0-160c-431a-9e49-fb3079198a45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "https://gist.github.com/EduardoCorpay/fdaeb4ec65cc4a1c8fcd2fb0162de09c", "content": "", "creation_timestamp": "2025-06-11T15:29:00.000000Z"}, {"uuid": "62714328-72e2-4449-9fc0-f94ea0aa3711", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13024", "type": "seen", "source": "https://infosec.exchange/users/vuldb/statuses/115535693106552699", "content": "", "creation_timestamp": "2025-11-12T08:06:10.710095Z"}, {"uuid": "572b1d65-2895-4fde-a4ca-654582d58b80", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m4tgnc62gj2w", "content": "", "creation_timestamp": "2025-11-04T21:02:34.133012Z"}, {"uuid": "b2bfdee9-6467-465d-9738-ddc25b60d5b4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "MISP/24306fae-b16b-4478-9297-d2973cdb583c", "content": "", "creation_timestamp": "2025-08-22T14:52:23.000000Z"}, {"uuid": "c432fb47-a284-4b5c-87cd-367d15ae7007", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3m666lbvxoi2f", "content": "", "creation_timestamp": "2025-11-21T21:02:53.638355Z"}, {"uuid": "1cf99861-e524-4692-ad20-6353acabda8a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13029", "type": "seen", "source": "https://bsky.app/profile/potato.software/post/3mbbaupnewh24", "content": "", "creation_timestamp": "2025-12-31T06:37:22.509852Z"}, {"uuid": "90946bb0-6a55-4dc2-9c29-fcf9b7fc740a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13029", "type": "seen", "source": "https://bsky.app/profile/thehackerwire.bsky.social/post/3mbh75gxx7u2p", "content": "", "creation_timestamp": "2026-01-02T15:22:49.898470Z"}, {"uuid": "592a9c46-6402-4712-8887-4364da121c5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "published-proof-of-concept", "source": "Telegram/5fpc-kYf9syAhcaq1341m3pDuvRO_9HkSj2oj9CH8Y52tS0", "content": "", "creation_timestamp": "2025-07-24T23:00:09.000000Z"}, {"uuid": "cfada291-1adf-48fa-b738-0a3e1aad97ee", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13027", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/59453", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1aThe public exploit for CVE-2025-13027\nURL\uff1ahttps://github.com/yourluckyday3-art/CVE-2025-13027-Exploit\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-11-12T21:26:07.000000Z"}, {"uuid": "5f225e13-013b-446a-86b2-8faeea1ac859", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13026", "type": "seen", "source": "Telegram/v-1_AydXySxi_N_xE6SaFVPXOMgwh9lcyi_nlmzJXhWqHW4", "content": "", "creation_timestamp": "2026-04-13T17:59:50.000000Z"}, {"uuid": "cd1541ae-d332-460d-9d1e-c51d8ffbaae9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13021", "type": "seen", "source": "Telegram/oO774kvwIB8daNH9tl28ZNH_NLpZ-tzMTZMRdZwVl3XAtyg", "content": "", "creation_timestamp": "2026-04-13T17:59:41.000000Z"}, {"uuid": "38ea0eaf-f82a-4167-8683-43c136a948dd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13022", "type": "seen", "source": "Telegram/oO774kvwIB8daNH9tl28ZNH_NLpZ-tzMTZMRdZwVl3XAtyg", "content": "", "creation_timestamp": "2026-04-13T17:59:41.000000Z"}, {"uuid": "06c504f0-5441-432b-bbb6-c94ad677b931", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13024", "type": "seen", "source": "Telegram/v-1_AydXySxi_N_xE6SaFVPXOMgwh9lcyi_nlmzJXhWqHW4", "content": "", "creation_timestamp": "2026-04-13T17:59:50.000000Z"}, {"uuid": "facd6b13-068f-49b7-99f0-197a39b51b32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13023", "type": "seen", "source": "Telegram/v-1_AydXySxi_N_xE6SaFVPXOMgwh9lcyi_nlmzJXhWqHW4", "content": "", "creation_timestamp": "2026-04-13T17:59:50.000000Z"}, {"uuid": "d71509bf-4f9b-4936-9210-5cfc49b0c296", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13027", "type": "seen", "source": "Telegram/v-1_AydXySxi_N_xE6SaFVPXOMgwh9lcyi_nlmzJXhWqHW4", "content": "", "creation_timestamp": "2026-04-13T17:59:50.000000Z"}, {"uuid": "457fc5ea-fb7e-441d-bfd4-176c4109f130", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13022", "type": "seen", "source": "Telegram/v-1_AydXySxi_N_xE6SaFVPXOMgwh9lcyi_nlmzJXhWqHW4", "content": "", "creation_timestamp": "2026-04-13T17:59:50.000000Z"}, {"uuid": "6fe90e3f-7bff-43d9-bc5f-ce0a6b74fa3f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13020", "type": "seen", "source": "Telegram/oO774kvwIB8daNH9tl28ZNH_NLpZ-tzMTZMRdZwVl3XAtyg", "content": "", "creation_timestamp": "2026-04-13T17:59:41.000000Z"}, {"uuid": "45146f6b-6726-498c-ad64-b6e8ebf53efc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13025", "type": "seen", "source": "Telegram/v-1_AydXySxi_N_xE6SaFVPXOMgwh9lcyi_nlmzJXhWqHW4", "content": "", "creation_timestamp": "2026-04-13T17:59:50.000000Z"}, {"uuid": "5f5dbb45-4783-4870-a8eb-d66826b46d3c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13027", "type": "seen", "source": "Telegram/zYW_ioLRpl3V_WxYDjvTzLHz6ep5TxE4hYjr15texXaPXdM", "content": "", "creation_timestamp": "2026-04-13T18:00:09.000000Z"}, {"uuid": "250c9e5f-c8ee-492f-ac5e-2628122b591b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4533", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-1302\n\ud83d\udd25 CVSS Score: 9.8 (CVSS_V3)\n\ud83d\udd39 Description: Versions of the package jsonpath-plus before 10.3.0 are vulnerable to Remote Code Execution (RCE) due to improper input sanitization. An attacker can execute aribitrary code on the system by exploiting the unsafe default usage of eval='safe' mode.\n\n**Note:**\n\nThis is caused by an incomplete fix for [CVE-2024-21534](https://security.snyk.io/vuln/SNYK-JS-JSONPATHPLUS-7945884).\n\ud83d\udccf Published: 2025-02-15T06:30:51Z\n\ud83d\udccf Modified: 2025-02-15T06:30:51Z\n\ud83d\udd17 References:\n1. https://nvd.nist.gov/vuln/detail/CVE-2025-1302\n2. https://github.com/JSONPath-Plus/JSONPath/commit/30942896d27cb8a806b965a5ca9ef9f686be24ee\n3. https://gist.github.com/nickcopi/11ba3cb4fdee6f89e02e6afae8db6456\n4. https://github.com/JSONPath-Plus/JSONPath/blob/8e4acf8aff5f446aa66323e12394ac5615c3b260/src/Safe-Script.js%23L127\n5. https://security.snyk.io/vuln/SNYK-JS-JSONPATHPLUS-8719585", "creation_timestamp": "2025-02-15T07:11:13.000000Z"}, {"uuid": "0fe6ff93-1159-49ef-92f3-5cd518367e98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/4537", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-1302\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: No description available\n\ud83d\udccf Published: 2025-02-15T05:15:11.683\n\ud83d\udccf Modified: N/A\n\ud83d\udd17 References:\n1. https://gist.github.com/nickcopi/11ba3cb4fdee6f89e02e6afae8db6456\n2. https://github.com/JSONPath-Plus/JSONPath/blob/8e4acf8aff5f446aa66323e12394ac5615c3b260/src/Safe-Script.js%23L127\n3. https://github.com/JSONPath-Plus/JSONPath/commit/30942896d27cb8a806b965a5ca9ef9f686be24ee\n4. https://security.snyk.io/vuln/SNYK-JS-JSONPATHPLUS-8719585", "creation_timestamp": "2025-02-15T07:11:19.000000Z"}, {"uuid": "74d361af-9c78-43bd-852b-5ce40a6adddc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13029", "type": "seen", "source": "Telegram/tvXCLGUilOvMaw6u2Ka_lL_W3ojA0JbLTE88GmCok0Ef1Hc", "content": "", "creation_timestamp": "2026-01-02T18:50:33.000000Z"}, {"uuid": "dfa2433a-929c-4e97-9b3d-6dd020dc1787", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "https://t.me/cvedetector/18161", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-1302 - Jsonpath-Plus Remote Code Execution (RCE)\", \n  \"Content\": \"CVE ID : CVE-2025-1302 \nPublished : Feb. 15, 2025, 5:15 a.m. | 2\u00a0hours, 2\u00a0minutes ago \nDescription : Versions of the package jsonpath-plus before 10.3.0 are vulnerable to Remote Code Execution (RCE) due to improper input sanitization. An attacker can execute aribitrary code on the system by exploiting the unsafe default usage of eval='safe' mode.  \n  \n**Note:**  \n  \nThis is caused by an incomplete fix for [CVE-2024-21534](). \nSeverity: 9.8 | CRITICAL \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"15 Feb 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-02-15T08:30:33.000000Z"}, {"uuid": "4a619336-9086-4098-8a00-65d2f297c67d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-13027", "type": "published-proof-of-concept", "source": "Telegram/X2X-Jjql1PrVxLlHx_faFmPla7HtOFqy0YqTW9jtSVfdBk8", "content": "", "creation_timestamp": "2025-11-13T03:00:07.000000Z"}, {"uuid": "d0eccf19-03da-4099-9a42-77c4d882ccbf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/45231", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aPoC exploit and vulnerable server demo for CVE-2025-1302 in jsonpath-plus.\nURL\uff1ahttps://github.com/abrewer251/CVE-2025-1302_jsonpath-plus_RCE\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-07-24T17:46:33.000000Z"}, {"uuid": "a334f69c-eb5a-40db-931f-9ddb7932b319", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/45234", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aRCE\n\u63cf\u8ff0\uff1aPoC exploit and vulnerable server demo for CVE-2025-1302 in jsonpath-plus.\nURL\uff1ahttps://github.com/DAVIDAROCA27/CVE-2024-23346-exploit\n\n\u6807\u7b7e\uff1a#RCE", "creation_timestamp": "2025-07-24T18:23:12.000000Z"}, {"uuid": "9ab1a123-e277-4f9e-9326-9ef81bd95704", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "seen", "source": "Telegram/B6Ro0XJaa5S2akdaKXUWQAw0I4uY8L6ZTgeKaeLAe3cSfbhr", "content": "", "creation_timestamp": "2025-02-15T23:50:18.000000Z"}, {"uuid": "10017670-7b7b-461c-9741-8bed04c5cb76", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "published-proof-of-concept", "source": "Telegram/hOLG--AO3JPkph5SXhaEZPsqsMyW7qsjKUHXu0bcblbq2os", "content": "", "creation_timestamp": "2025-02-25T16:00:09.000000Z"}, {"uuid": "f93b8930-7e6a-4990-9fa7-917aa4a279cb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "published-proof-of-concept", "source": "Telegram/lcgdlSBqy2UjD9QHue4ey0EBMFDyIK-Lr-YtN1OAN3b8ISQ", "content": "", "creation_timestamp": "2025-02-26T12:00:08.000000Z"}, {"uuid": "ab501889-a685-475c-a7cd-54f6b47ec947", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-1302", "type": "published-proof-of-concept", "source": "Telegram/-0DnyGxnFz1Zn2YTfcE6RDCoyHK0fc74sjJZ3LBAyyvOwwg", "content": "", "creation_timestamp": "2025-02-15T07:00:36.000000Z"}]}