{"vulnerability": "CVE-2025-4578", "sightings": [{"uuid": "1df0f8df-969c-4e79-b618-7de28471789f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45784", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114705126585760087", "content": "", "creation_timestamp": "2025-06-18T15:42:11.685282Z"}, {"uuid": "96538570-9977-4aa6-920f-4a2d4d5640cf", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-4578", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lqratazuqm2e", "content": "", "creation_timestamp": "2025-06-04T07:10:51.753917Z"}, {"uuid": "17eada29-63b1-45be-863e-fb728d7459d7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45784", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrvjcs4nor2k", "content": "", "creation_timestamp": "2025-06-18T17:18:33.493388Z"}, {"uuid": "96722827-ce4b-4f50-97d4-b0b04a62c66c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45786", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3lrvjlqkq4q2r", "content": "", "creation_timestamp": "2025-06-18T17:23:33.608971Z"}, {"uuid": "df118c50-a075-42b4-99ce-90629cf08b58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45787", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3loot2vqd7l32", "content": "", "creation_timestamp": "2025-05-08T21:15:07.757980Z"}, {"uuid": "9c166866-ae8f-4282-8eac-80415cea11a2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45786", "type": "seen", "source": "https://gist.github.com/0xKunAlx0/a80bc7ec5acb2f19daa36257fedbcf11", "content": "", "creation_timestamp": "2025-06-13T07:24:40.000000Z"}, {"uuid": "9af72b69-d662-47c7-93fc-5ef13fcf1d47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45788", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3loot2y4lhqy2", "content": "", "creation_timestamp": "2025-05-08T21:15:10.567183Z"}, {"uuid": "543318dc-6493-446c-91ff-0946b57360c8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45789", "type": "seen", "source": "https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lootekokcjy2", "content": "", "creation_timestamp": "2025-05-08T21:15:21.819068Z"}, {"uuid": "3d784a1e-cac4-46b8-a6cc-a2a954722e26", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45787", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3looxq2hhrk2l", "content": "", "creation_timestamp": "2025-05-08T22:32:19.068385Z"}, {"uuid": "cb0c2893-6fea-42d1-979b-1408bd3ea5eb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45788", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3looxq2ktox2n", "content": "", "creation_timestamp": "2025-05-08T22:32:19.661921Z"}, {"uuid": "2c91731e-18f6-48cb-abde-9628539e5040", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45789", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3looxq2v5hr2h", "content": "", "creation_timestamp": "2025-05-08T22:32:21.499242Z"}, {"uuid": "dc78c0db-7e80-495e-a984-da0594fc7c37", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45784", "type": "published-proof-of-concept", "source": "Telegram/4HBiddkipVDKS5d3LUOqCrILjbEOa9wvtuqYzTn22K_SmmY", "content": "", "creation_timestamp": "2025-06-18T15:31:20.000000Z"}, {"uuid": "e9d18432-8bd6-43fa-965e-6ff68c7d2752", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45786", "type": "published-proof-of-concept", "source": "Telegram/4HBiddkipVDKS5d3LUOqCrILjbEOa9wvtuqYzTn22K_SmmY", "content": "", "creation_timestamp": "2025-06-18T15:31:20.000000Z"}, {"uuid": "5e110db0-319c-4b9a-86be-ddb8f7702f6c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45788", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15621", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-45788\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow via the comment parameter in setMacFilterRules.\n\ud83d\udccf Published: 2025-05-08T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-08T19:54:26.197Z\n\ud83d\udd17 References:\n1. https://github.com/SunnyYANGyaya/cuicuishark-sheep-fishIOT/blob/main/ToTolink/A3100R-2/README.md", "creation_timestamp": "2025-05-08T20:24:03.000000Z"}, {"uuid": "03ebbbfb-703e-42b6-b307-4e4b645daed2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45787", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15620", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-45787\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow viathe comment parameter in setIpPortFilterRules.\n\ud83d\udccf Published: 2025-05-08T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-08T19:56:00.956Z\n\ud83d\udd17 References:\n1. https://github.com/SunnyYANGyaya/cuicuishark-sheep-fishIOT/tree/main/ToTolink/A3100R-1", "creation_timestamp": "2025-05-08T20:24:02.000000Z"}, {"uuid": "1dd12a9c-bbf2-4430-bbe2-97e4f7488a3e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45784", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/18747", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-45784\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: D-Link DPH-400S/SE VoIP Phone v1.01 contains hardcoded provisioning variables, including PROVIS_USER_PASSWORD, which may expose sensitive user credentials. An attacker with access to the firmware image can extract these credentials using static analysis tools such as strings or xxd, potentially leading to unauthorized access to device functions or user accounts. This vulnerability exists due to insecure storage of sensitive information in the firmware binary.\n\ud83d\udccf Published: 2025-06-18T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-18T14:25:38.614Z\n\ud83d\udd17 References:\n1. https://www.dlink.com/en/security-bulletin/\n2. https://cybermaya.in/posts/Post-37/", "creation_timestamp": "2025-06-18T14:41:48.000000Z"}, {"uuid": "1da307f9-16a2-4d8b-8d01-c36fbed92221", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45789", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/15619", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-45789\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: TOTOLINK A3100R V5.9c.1527 is vulnerable to buffer overflow via the urlKeyword parameter in setParentalRules.\n\ud83d\udccf Published: 2025-05-08T00:00:00.000Z\n\ud83d\udccf Modified: 2025-05-08T19:57:39.687Z\n\ud83d\udd17 References:\n1. https://github.com/SunnyYANGyaya/cuicuishark-sheep-fishIOT/blob/main/ToTolink/A3100R-3/README.md", "creation_timestamp": "2025-05-08T20:24:01.000000Z"}, {"uuid": "61e21932-e8d3-4365-a898-79aa8796b5ea", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-4578", "type": "exploited", "source": "Telegram/kabkSjcaer5upRB0Ibwq9GK8VGQatVOtX1VoUjYbdl2MlGc", "content": "", "creation_timestamp": "2025-07-10T21:00:04.000000Z"}, {"uuid": "03624972-1902-4aa4-a784-ff7346fef607", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45786", "type": "published-proof-of-concept", "source": "https://t.me/DarkWebInformer_CVEAlerts/18751", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-45786\n\ud83d\udd25 CVSS Score: N/A\n\ud83d\udd39 Description: Real Estate Management 1.0 is vulnerable to Cross Site Scripting (XSS) in /store/index.php.\n\ud83d\udccf Published: 2025-06-18T00:00:00.000Z\n\ud83d\udccf Modified: 2025-06-18T14:17:36.233Z\n\ud83d\udd17 References:\n1. https://updategadh.com/free-projects/real-estate-management/\n2. https://gist.github.com/0xKunAlx0/a80bc7ec5acb2f19daa36257fedbcf11", "creation_timestamp": "2025-06-18T14:41:54.000000Z"}, {"uuid": "a54bbb93-e5af-4225-a58e-a233728d3e0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45787", "type": "seen", "source": "https://t.me/cvedetector/24871", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-45787 - Totolink A3100R Buffer Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-45787 \nPublished : May 8, 2025, 8:15 p.m. | 1\u00a0hour, 18\u00a0minutes ago \nDescription : TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow viathe comment parameter in setIpPortFilterRules. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-09T00:19:06.000000Z"}, {"uuid": "8b15935b-5203-44e2-8aa6-f46be2b22105", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45789", "type": "seen", "source": "https://t.me/cvedetector/24862", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-45789 - TOTOLINK A3100R Buffer Overflow\", \n  \"Content\": \"CVE ID : CVE-2025-45789 \nPublished : May 8, 2025, 8:15 p.m. | 1\u00a0hour, 18\u00a0minutes ago \nDescription : TOTOLINK A3100R V5.9c.1527 is vulnerable to buffer overflow via the urlKeyword parameter in setParentalRules. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-09T00:18:56.000000Z"}, {"uuid": "4fc39cf1-7d3b-4d9c-af9f-b370bf960ad0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2025-45788", "type": "seen", "source": "https://t.me/cvedetector/24861", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-45788 - TOTOLINK A3100R Buffer Overflow Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-45788 \nPublished : May 8, 2025, 8:15 p.m. | 1\u00a0hour, 18\u00a0minutes ago \nDescription : TOTOLINK A3100R V5.9c.1527 is vulnerable to Buffer Overflow via the comment parameter in setMacFilterRules. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"08 May 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-05-09T00:18:53.000000Z"}]}